Compare commits
1 Commits
test-pytho
...
v0.10.0
| Author | SHA1 | Date | |
|---|---|---|---|
|
55f4b568b7 |
@@ -4,7 +4,7 @@ from setuptools import setup
|
|||||||
from setuptools import find_packages
|
from setuptools import find_packages
|
||||||
|
|
||||||
|
|
||||||
version = '0.10.0.dev0'
|
version = '0.10.0'
|
||||||
|
|
||||||
# Please update tox.ini when modifying dependency version requirements
|
# Please update tox.ini when modifying dependency version requirements
|
||||||
install_requires = [
|
install_requires = [
|
||||||
|
|||||||
@@ -4,7 +4,7 @@ from setuptools import setup
|
|||||||
from setuptools import find_packages
|
from setuptools import find_packages
|
||||||
|
|
||||||
|
|
||||||
version = '0.10.0.dev0'
|
version = '0.10.0'
|
||||||
|
|
||||||
# Please update tox.ini when modifying dependency version requirements
|
# Please update tox.ini when modifying dependency version requirements
|
||||||
install_requires = [
|
install_requires = [
|
||||||
|
|||||||
223
certbot-auto
223
certbot-auto
@@ -15,11 +15,15 @@ set -e # Work even if somebody does "sh thisscript.sh".
|
|||||||
|
|
||||||
# Note: you can set XDG_DATA_HOME or VENV_PATH before running this script,
|
# Note: you can set XDG_DATA_HOME or VENV_PATH before running this script,
|
||||||
# if you want to change where the virtual environment will be installed
|
# if you want to change where the virtual environment will be installed
|
||||||
XDG_DATA_HOME=${XDG_DATA_HOME:-~/.local/share}
|
if [ -z "$XDG_DATA_HOME" ]; then
|
||||||
|
XDG_DATA_HOME=~/.local/share
|
||||||
|
fi
|
||||||
VENV_NAME="letsencrypt"
|
VENV_NAME="letsencrypt"
|
||||||
VENV_PATH=${VENV_PATH:-"$XDG_DATA_HOME/$VENV_NAME"}
|
if [ -z "$VENV_PATH" ]; then
|
||||||
|
VENV_PATH="$XDG_DATA_HOME/$VENV_NAME"
|
||||||
|
fi
|
||||||
VENV_BIN="$VENV_PATH/bin"
|
VENV_BIN="$VENV_PATH/bin"
|
||||||
LE_AUTO_VERSION="0.9.3"
|
LE_AUTO_VERSION="0.10.0"
|
||||||
BASENAME=$(basename $0)
|
BASENAME=$(basename $0)
|
||||||
USAGE="Usage: $BASENAME [OPTIONS]
|
USAGE="Usage: $BASENAME [OPTIONS]
|
||||||
A self-updating wrapper script for the Certbot ACME client. When run, updates
|
A self-updating wrapper script for the Certbot ACME client. When run, updates
|
||||||
@@ -58,6 +62,7 @@ for arg in "$@" ; do
|
|||||||
--verbose)
|
--verbose)
|
||||||
VERBOSE=1;;
|
VERBOSE=1;;
|
||||||
-[!-]*)
|
-[!-]*)
|
||||||
|
OPTIND=1
|
||||||
while getopts ":hnvq" short_arg $arg; do
|
while getopts ":hnvq" short_arg $arg; do
|
||||||
case "$short_arg" in
|
case "$short_arg" in
|
||||||
h)
|
h)
|
||||||
@@ -79,22 +84,27 @@ if [ $BASENAME = "letsencrypt-auto" ]; then
|
|||||||
HELP=0
|
HELP=0
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
# Support for busybox and others where there is no "command",
|
||||||
|
# but "which" instead
|
||||||
|
if command -v command > /dev/null 2>&1 ; then
|
||||||
|
export EXISTS="command -v"
|
||||||
|
elif which which > /dev/null 2>&1 ; then
|
||||||
|
export EXISTS="which"
|
||||||
|
else
|
||||||
|
echo "Cannot find command nor which... please install one!"
|
||||||
|
exit 1
|
||||||
|
fi
|
||||||
|
|
||||||
# certbot-auto needs root access to bootstrap OS dependencies, and
|
# certbot-auto needs root access to bootstrap OS dependencies, and
|
||||||
# certbot itself needs root access for almost all modes of operation
|
# certbot itself needs root access for almost all modes of operation
|
||||||
# The "normal" case is that sudo is used for the steps that need root, but
|
# The "normal" case is that sudo is used for the steps that need root, but
|
||||||
# this script *can* be run as root (not recommended), or fall back to using
|
# this script *can* be run as root (not recommended), or fall back to using
|
||||||
# `su`
|
# `su`. Auto-detection can be overrided by explicitly setting the
|
||||||
SUDO_ENV=""
|
# environment variable LE_AUTO_SUDO to 'sudo', 'sudo_su' or '' as used below.
|
||||||
export CERTBOT_AUTO="$0"
|
|
||||||
if test "`id -u`" -ne "0" ; then
|
# Because the parameters in `su -c` has to be a string,
|
||||||
if command -v sudo 1>/dev/null 2>&1; then
|
# we need to properly escape it.
|
||||||
SUDO=sudo
|
su_sudo() {
|
||||||
SUDO_ENV="CERTBOT_AUTO=$0"
|
|
||||||
else
|
|
||||||
echo \"sudo\" is not available, will use \"su\" for installation steps...
|
|
||||||
# Because the parameters in `su -c` has to be a string,
|
|
||||||
# we need properly escape it
|
|
||||||
su_sudo() {
|
|
||||||
args=""
|
args=""
|
||||||
# This `while` loop iterates over all parameters given to this function.
|
# This `while` loop iterates over all parameters given to this function.
|
||||||
# For each parameter, all `'` will be replace by `'"'"'`, and the escaped string
|
# For each parameter, all `'` will be replace by `'"'"'`, and the escaped string
|
||||||
@@ -111,11 +121,37 @@ if test "`id -u`" -ne "0" ; then
|
|||||||
shift
|
shift
|
||||||
done
|
done
|
||||||
su root -c "$args"
|
su root -c "$args"
|
||||||
}
|
}
|
||||||
|
|
||||||
|
SUDO_ENV=""
|
||||||
|
export CERTBOT_AUTO="$0"
|
||||||
|
if [ -n "${LE_AUTO_SUDO+x}" ]; then
|
||||||
|
case "$LE_AUTO_SUDO" in
|
||||||
|
su_sudo|su)
|
||||||
|
SUDO=su_sudo
|
||||||
|
;;
|
||||||
|
sudo)
|
||||||
|
SUDO=sudo
|
||||||
|
SUDO_ENV="CERTBOT_AUTO=$0"
|
||||||
|
;;
|
||||||
|
'') ;; # Nothing to do for plain root method.
|
||||||
|
*)
|
||||||
|
echo "Error: unknown root authorization mechanism '$LE_AUTO_SUDO'."
|
||||||
|
exit 1
|
||||||
|
esac
|
||||||
|
echo "Using preset root authorization mechanism '$LE_AUTO_SUDO'."
|
||||||
|
else
|
||||||
|
if test "`id -u`" -ne "0" ; then
|
||||||
|
if $EXISTS sudo 1>/dev/null 2>&1; then
|
||||||
|
SUDO=sudo
|
||||||
|
SUDO_ENV="CERTBOT_AUTO=$0"
|
||||||
|
else
|
||||||
|
echo \"sudo\" is not available, will use \"su\" for installation steps...
|
||||||
SUDO=su_sudo
|
SUDO=su_sudo
|
||||||
fi
|
fi
|
||||||
else
|
else
|
||||||
SUDO=
|
SUDO=
|
||||||
|
fi
|
||||||
fi
|
fi
|
||||||
|
|
||||||
ExperimentalBootstrap() {
|
ExperimentalBootstrap() {
|
||||||
@@ -136,7 +172,7 @@ ExperimentalBootstrap() {
|
|||||||
DeterminePythonVersion() {
|
DeterminePythonVersion() {
|
||||||
for LE_PYTHON in "$LE_PYTHON" python2.7 python27 python2 python; do
|
for LE_PYTHON in "$LE_PYTHON" python2.7 python27 python2 python; do
|
||||||
# Break (while keeping the LE_PYTHON value) if found.
|
# Break (while keeping the LE_PYTHON value) if found.
|
||||||
command -v "$LE_PYTHON" > /dev/null && break
|
$EXISTS "$LE_PYTHON" > /dev/null && break
|
||||||
done
|
done
|
||||||
if [ "$?" != "0" ]; then
|
if [ "$?" != "0" ]; then
|
||||||
echo "Cannot find any Pythons; please install one!"
|
echo "Cannot find any Pythons; please install one!"
|
||||||
@@ -177,16 +213,19 @@ BootstrapDebCommon() {
|
|||||||
# distro version (#346)
|
# distro version (#346)
|
||||||
|
|
||||||
virtualenv=
|
virtualenv=
|
||||||
if apt-cache show virtualenv > /dev/null 2>&1 && ! apt-cache --quiet=0 show virtualenv 2>&1 | grep -q 'No packages found'; then
|
# virtual env is known to apt and is installable
|
||||||
|
if apt-cache show virtualenv > /dev/null 2>&1 ; then
|
||||||
|
if ! LC_ALL=C apt-cache --quiet=0 show virtualenv 2>&1 | grep -q 'No packages found'; then
|
||||||
virtualenv="virtualenv"
|
virtualenv="virtualenv"
|
||||||
fi
|
fi
|
||||||
|
fi
|
||||||
|
|
||||||
if apt-cache show python-virtualenv > /dev/null 2>&1; then
|
if apt-cache show python-virtualenv > /dev/null 2>&1; then
|
||||||
virtualenv="$virtualenv python-virtualenv"
|
virtualenv="$virtualenv python-virtualenv"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
augeas_pkg="libaugeas0 augeas-lenses"
|
augeas_pkg="libaugeas0 augeas-lenses"
|
||||||
AUGVERSION=`apt-cache show --no-all-versions libaugeas0 | grep ^Version: | cut -d" " -f2`
|
AUGVERSION=`LC_ALL=C apt-cache show --no-all-versions libaugeas0 | grep ^Version: | cut -d" " -f2`
|
||||||
|
|
||||||
if [ "$ASSUME_YES" = 1 ]; then
|
if [ "$ASSUME_YES" = 1 ]; then
|
||||||
YES_FLAG="-y"
|
YES_FLAG="-y"
|
||||||
@@ -248,15 +287,15 @@ BootstrapDebCommon() {
|
|||||||
python-dev \
|
python-dev \
|
||||||
$virtualenv \
|
$virtualenv \
|
||||||
gcc \
|
gcc \
|
||||||
dialog \
|
|
||||||
$augeas_pkg \
|
$augeas_pkg \
|
||||||
libssl-dev \
|
libssl-dev \
|
||||||
|
openssl \
|
||||||
libffi-dev \
|
libffi-dev \
|
||||||
ca-certificates \
|
ca-certificates \
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
if ! command -v virtualenv > /dev/null ; then
|
if ! $EXISTS virtualenv > /dev/null ; then
|
||||||
echo Failed to install a working \"virtualenv\" command, exiting
|
echo Failed to install a working \"virtualenv\" command, exiting
|
||||||
exit 1
|
exit 1
|
||||||
fi
|
fi
|
||||||
@@ -307,7 +346,6 @@ BootstrapRpmCommon() {
|
|||||||
|
|
||||||
pkgs="
|
pkgs="
|
||||||
gcc
|
gcc
|
||||||
dialog
|
|
||||||
augeas-libs
|
augeas-libs
|
||||||
openssl
|
openssl
|
||||||
openssl-devel
|
openssl-devel
|
||||||
@@ -361,7 +399,6 @@ BootstrapSuseCommon() {
|
|||||||
python-devel \
|
python-devel \
|
||||||
python-virtualenv \
|
python-virtualenv \
|
||||||
gcc \
|
gcc \
|
||||||
dialog \
|
|
||||||
augeas-lenses \
|
augeas-lenses \
|
||||||
libopenssl-devel \
|
libopenssl-devel \
|
||||||
libffi-devel \
|
libffi-devel \
|
||||||
@@ -380,7 +417,6 @@ BootstrapArchCommon() {
|
|||||||
python2
|
python2
|
||||||
python-virtualenv
|
python-virtualenv
|
||||||
gcc
|
gcc
|
||||||
dialog
|
|
||||||
augeas
|
augeas
|
||||||
openssl
|
openssl
|
||||||
libffi
|
libffi
|
||||||
@@ -404,22 +440,26 @@ BootstrapGentooCommon() {
|
|||||||
PACKAGES="
|
PACKAGES="
|
||||||
dev-lang/python:2.7
|
dev-lang/python:2.7
|
||||||
dev-python/virtualenv
|
dev-python/virtualenv
|
||||||
dev-util/dialog
|
|
||||||
app-admin/augeas
|
app-admin/augeas
|
||||||
dev-libs/openssl
|
dev-libs/openssl
|
||||||
dev-libs/libffi
|
dev-libs/libffi
|
||||||
app-misc/ca-certificates
|
app-misc/ca-certificates
|
||||||
virtual/pkgconfig"
|
virtual/pkgconfig"
|
||||||
|
|
||||||
|
ASK_OPTION="--ask"
|
||||||
|
if [ "$ASSUME_YES" = 1 ]; then
|
||||||
|
ASK_OPTION=""
|
||||||
|
fi
|
||||||
|
|
||||||
case "$PACKAGE_MANAGER" in
|
case "$PACKAGE_MANAGER" in
|
||||||
(paludis)
|
(paludis)
|
||||||
$SUDO cave resolve --preserve-world --keep-targets if-possible $PACKAGES -x
|
$SUDO cave resolve --preserve-world --keep-targets if-possible $PACKAGES -x
|
||||||
;;
|
;;
|
||||||
(pkgcore)
|
(pkgcore)
|
||||||
$SUDO pmerge --noreplace --oneshot $PACKAGES
|
$SUDO pmerge --noreplace --oneshot $ASK_OPTION $PACKAGES
|
||||||
;;
|
;;
|
||||||
(portage|*)
|
(portage|*)
|
||||||
$SUDO emerge --noreplace --oneshot $PACKAGES
|
$SUDO emerge --noreplace --oneshot $ASK_OPTION $PACKAGES
|
||||||
;;
|
;;
|
||||||
esac
|
esac
|
||||||
}
|
}
|
||||||
@@ -449,7 +489,6 @@ BootstrapMac() {
|
|||||||
fi
|
fi
|
||||||
|
|
||||||
$pkgcmd augeas
|
$pkgcmd augeas
|
||||||
$pkgcmd dialog
|
|
||||||
if [ "$(which python)" = "/System/Library/Frameworks/Python.framework/Versions/2.7/bin/python" \
|
if [ "$(which python)" = "/System/Library/Frameworks/Python.framework/Versions/2.7/bin/python" \
|
||||||
-o "$(which python)" = "/usr/bin/python" ]; then
|
-o "$(which python)" = "/usr/bin/python" ]; then
|
||||||
# We want to avoid using the system Python because it requires root to use pip.
|
# We want to avoid using the system Python because it requires root to use pip.
|
||||||
@@ -458,7 +497,7 @@ BootstrapMac() {
|
|||||||
$pkgcmd python
|
$pkgcmd python
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# Workaround for _dlopen not finding augeas on OS X
|
# Workaround for _dlopen not finding augeas on macOS
|
||||||
if [ "$pkgman" = "port" ] && ! [ -e "/usr/local/lib/libaugeas.dylib" ] && [ -e "/opt/local/lib/libaugeas.dylib" ]; then
|
if [ "$pkgman" = "port" ] && ! [ -e "/usr/local/lib/libaugeas.dylib" ] && [ -e "/opt/local/lib/libaugeas.dylib" ]; then
|
||||||
echo "Applying augeas workaround"
|
echo "Applying augeas workaround"
|
||||||
$SUDO mkdir -p /usr/local/lib/
|
$SUDO mkdir -p /usr/local/lib/
|
||||||
@@ -496,8 +535,8 @@ BootstrapMageiaCommon() {
|
|||||||
if ! $SUDO urpmi --force \
|
if ! $SUDO urpmi --force \
|
||||||
git \
|
git \
|
||||||
gcc \
|
gcc \
|
||||||
cdialog \
|
|
||||||
python-augeas \
|
python-augeas \
|
||||||
|
openssl \
|
||||||
libopenssl-devel \
|
libopenssl-devel \
|
||||||
libffi-devel \
|
libffi-devel \
|
||||||
rootcerts
|
rootcerts
|
||||||
@@ -541,7 +580,7 @@ Bootstrap() {
|
|||||||
elif uname | grep -iq FreeBSD ; then
|
elif uname | grep -iq FreeBSD ; then
|
||||||
ExperimentalBootstrap "FreeBSD" BootstrapFreeBsd
|
ExperimentalBootstrap "FreeBSD" BootstrapFreeBsd
|
||||||
elif uname | grep -iq Darwin ; then
|
elif uname | grep -iq Darwin ; then
|
||||||
ExperimentalBootstrap "Mac OS X" BootstrapMac
|
ExperimentalBootstrap "macOS" BootstrapMac
|
||||||
elif [ -f /etc/issue ] && grep -iq "Amazon Linux" /etc/issue ; then
|
elif [ -f /etc/issue ] && grep -iq "Amazon Linux" /etc/issue ; then
|
||||||
ExperimentalBootstrap "Amazon Linux" BootstrapRpmCommon
|
ExperimentalBootstrap "Amazon Linux" BootstrapRpmCommon
|
||||||
elif [ -f /etc/product ] && grep -q "Joyent Instance" /etc/product ; then
|
elif [ -f /etc/product ] && grep -q "Joyent Instance" /etc/product ; then
|
||||||
@@ -557,7 +596,7 @@ Bootstrap() {
|
|||||||
}
|
}
|
||||||
|
|
||||||
TempDir() {
|
TempDir() {
|
||||||
mktemp -d 2>/dev/null || mktemp -d -t 'le' # Linux || OS X
|
mktemp -d 2>/dev/null || mktemp -d -t 'le' # Linux || macOS
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
@@ -594,6 +633,11 @@ if [ "$1" = "--le-auto-phase2" ]; then
|
|||||||
# `pip install --no-cache-dir -e acme -e . -e certbot-apache -e certbot-nginx`,
|
# `pip install --no-cache-dir -e acme -e . -e certbot-apache -e certbot-nginx`,
|
||||||
# and then use `hashin` or a more secure method to gather the hashes.
|
# and then use `hashin` or a more secure method to gather the hashes.
|
||||||
|
|
||||||
|
# Hashin example:
|
||||||
|
# pip install hashin
|
||||||
|
# hashin -r letsencrypt-auto-requirements.txt cryptography==1.5.2
|
||||||
|
# sets the new certbot-auto pinned version of cryptography to 1.5.2
|
||||||
|
|
||||||
argparse==1.4.0 \
|
argparse==1.4.0 \
|
||||||
--hash=sha256:c31647edb69fd3d465a847ea3157d37bed1f95f19760b11a47aa91c04b666314 \
|
--hash=sha256:c31647edb69fd3d465a847ea3157d37bed1f95f19760b11a47aa91c04b666314 \
|
||||||
--hash=sha256:62b089a55be1d8949cd2bc7e0df0bddb9e028faefc8c32038cc84862aefdd6e4
|
--hash=sha256:62b089a55be1d8949cd2bc7e0df0bddb9e028faefc8c32038cc84862aefdd6e4
|
||||||
@@ -601,7 +645,8 @@ argparse==1.4.0 \
|
|||||||
# This comes before cffi because cffi will otherwise install an unchecked
|
# This comes before cffi because cffi will otherwise install an unchecked
|
||||||
# version via setup_requires.
|
# version via setup_requires.
|
||||||
pycparser==2.14 \
|
pycparser==2.14 \
|
||||||
--hash=sha256:7959b4a74abdc27b312fed1c21e6caf9309ce0b29ea86b591fd2e99ecdf27f73
|
--hash=sha256:7959b4a74abdc27b312fed1c21e6caf9309ce0b29ea86b591fd2e99ecdf27f73 \
|
||||||
|
--no-binary pycparser
|
||||||
|
|
||||||
cffi==1.4.2 \
|
cffi==1.4.2 \
|
||||||
--hash=sha256:53c1c9ddb30431513eb7f3cdef0a3e06b0f1252188aaa7744af0f5a4cd45dbaf \
|
--hash=sha256:53c1c9ddb30431513eb7f3cdef0a3e06b0f1252188aaa7744af0f5a4cd45dbaf \
|
||||||
@@ -624,29 +669,29 @@ ConfigArgParse==0.10.0 \
|
|||||||
--hash=sha256:3b50a83dd58149dfcee98cb6565265d10b53e9c0a2bca7eeef7fb5f5524890a7
|
--hash=sha256:3b50a83dd58149dfcee98cb6565265d10b53e9c0a2bca7eeef7fb5f5524890a7
|
||||||
configobj==5.0.6 \
|
configobj==5.0.6 \
|
||||||
--hash=sha256:a2f5650770e1c87fb335af19a9b7eb73fc05ccf22144eb68db7d00cd2bcb0902
|
--hash=sha256:a2f5650770e1c87fb335af19a9b7eb73fc05ccf22144eb68db7d00cd2bcb0902
|
||||||
cryptography==1.3.4 \
|
cryptography==1.5.3 \
|
||||||
--hash=sha256:bede00edd11a2a62c8c98c271cc103fa3a3d72acf64f6e5e4eaf251128897b17 \
|
--hash=sha256:e514d92086246b53ae9b048df652cf3036b462e50a6ce9fac6b6253502679991 \
|
||||||
--hash=sha256:53b39e687b744bb548a98f40736cc529d9f60959b4e6cc551322cf9505d35eb3 \
|
--hash=sha256:10ee414f4b5af403a0d8f20dfa80f7dad1fc7ae5452ec5af03712d5b6e78c664 \
|
||||||
--hash=sha256:474b73ad1139b4e423e46bbd818efd0d5c0df1c65d9f7c957d64c9215d77afde \
|
--hash=sha256:7234456d1f4345a144ed07af2416c7c0659d4bb599dd1a963103dc8c183b370e \
|
||||||
--hash=sha256:aaddf9592d5b99e32dd518bb4a25b147c124f9d6b4ad64b94f01b15d1666b8c8 \
|
--hash=sha256:d3b9587406f94642bd70b3d666b813f446e95f84220c9e416ad94cbfb6be2eaa \
|
||||||
--hash=sha256:6dcad2f407db8c3cd6ecd78361439c449a4f94786b46c54507e7e68f51e1709d \
|
--hash=sha256:b15fc6b59f1474eef62207c85888afada8acc47fae8198ba2b0197d54538961a \
|
||||||
--hash=sha256:475c153fc622e656f1f10a9c9941d0ac7ab18df7c38d35d563a437c1c0e34f24 \
|
--hash=sha256:3b62d65d342704fc07ed171598db2a2775bdf587b1b6abd2cba2261bfe3ccde3 \
|
||||||
--hash=sha256:86dd61df581cba04e89e45081efbc531faff1c9d99c77b1ce97f87216c356353 \
|
--hash=sha256:059343022ec904c867a13bc55d2573e36c8cfb2c250e30d8a2e9825f253b07ba \
|
||||||
--hash=sha256:75cc697e4ef5fdd0102ca749114c6370dbd11db0c9132a18834858c2566247e3 \
|
--hash=sha256:c7897cf13bc8b4ee0215d83cbd51766d87c06b277fcca1f9108595508e5bcfb4 \
|
||||||
--hash=sha256:ea03ad5b9df6d79fc9fc1ab23729e01e1c920d2974c5e3c634ccf45a5c378452 \
|
--hash=sha256:9b69e983e5bf83039ddd52e52a28c7faedb2b22bdfb5876377b95aac7d3be63e \
|
||||||
--hash=sha256:c8872b8fe4f3416d6338ab99612f49ab314f7856cb43bffab2a32d28a6267be8 \
|
--hash=sha256:61e40905c426d02b3fae38088dc66ce4ef84830f7eb223dec6b3ac3ccdc676fb \
|
||||||
--hash=sha256:468fc6e16eaec6ceaa6bc341273e6e9912d01b42b740f8cf896ace7fcd6a321d \
|
--hash=sha256:00783a32bcd91a12177230d35bfcf70a2333ade4a6b607fac94a633a7971c671 \
|
||||||
--hash=sha256:d6fea3c6502735011c5d61a62aef1c1d770fc6a2def45d9e6c0d94c9651e3317 \
|
--hash=sha256:d11973f49b648cde1ea1a30e496d7557dbfeccd08b3cd9ba58d286a9c274ff8e \
|
||||||
--hash=sha256:3cf95f179f4bead3d5649b91860ef4cf60ad4244209190fc405908272576d961 \
|
--hash=sha256:f24bedf28b81932ba6063aec9a826669f5237ea3b755efe04d98b072faa053a5 \
|
||||||
--hash=sha256:141f77e60a5b9158309b2b60288c7f81d37faa15c22a69b94c190ceefaaa6236 \
|
--hash=sha256:3ab5725367239e3deb9b92e917aa965af3fef008f25b96a3000821869e208181 \
|
||||||
--hash=sha256:87b7a1fe703c6424451f3372d1879dae91c7fe5e13375441a72833db76fee30e \
|
--hash=sha256:8a53209de822e22b5f73bf4b99e68ac4ccc91051fd6751c8252982983e86a77d \
|
||||||
--hash=sha256:f5ee3cb0cf1a6550bf483ccffa6608db267a377b45f7e3a8201a86d1d8feb19f \
|
--hash=sha256:5a07439d4b1e4197ac202b7eea45e26a6fd65757652dc50f1a63367f711df933 \
|
||||||
--hash=sha256:4e097286651ea318300af3251375d48b71b8228481c56cd617ddd4459a1ff261 \
|
--hash=sha256:26b1c4b40aec7b0074bceabe6e06565aa28176eca7323a31df66ebf89fe916d3 \
|
||||||
--hash=sha256:1e3d3ae3f22f22d50d340f47f25227511326f3f1396c6d2446a5b45b516c4313 \
|
--hash=sha256:eaa4a7b5a6682adcf8d6ebb2a08a008802657643655bb527c95c8a3860253d8e \
|
||||||
--hash=sha256:6a057941cb64d79834ea3cf99093fcc4787c2a5d44f686c4f297361ddc419bcd \
|
--hash=sha256:8156927dcf8da274ff205ad0612f75c380df45385bacf98531a5b3348c88d135 \
|
||||||
--hash=sha256:68b3d5390b92559ddd3353c73ab2dfcff758f9c4ec4f5d5226ccede0e5d779f4 \
|
--hash=sha256:61ec0d792749d0e91e84b1d58b6dfd204806b10b5811f846c2ceca0de028c53a \
|
||||||
--hash=sha256:545dc003b4b6081f9c3e452da15d819b04b696f49484aff64c0a2aedf766bef8 \
|
--hash=sha256:26330c88041569ca621cc42274d0ea2667a48b6deab41467272c3aba0b6e8f07 \
|
||||||
--hash=sha256:423ff890c01be7c70dbfeaa967eeef5146f1a43a5f810ffdc07b178e48a105a9
|
--hash=sha256:cf82ddac919b587f5e44247579b433224cc2e03332d2ea4d89aa70d7e6b64ae5
|
||||||
enum34==1.1.2 \
|
enum34==1.1.2 \
|
||||||
--hash=sha256:2475d7fcddf5951e92ff546972758802de5260bf409319a9f1934e6bbc8b1dc7 \
|
--hash=sha256:2475d7fcddf5951e92ff546972758802de5260bf409319a9f1934e6bbc8b1dc7 \
|
||||||
--hash=sha256:35907defb0f992b75ab7788f65fedc1cf20ffa22688e0e6f6f12afc06b3ea501
|
--hash=sha256:35907defb0f992b75ab7788f65fedc1cf20ffa22688e0e6f6f12afc06b3ea501
|
||||||
@@ -662,8 +707,6 @@ ipaddress==1.0.16 \
|
|||||||
linecache2==1.0.0 \
|
linecache2==1.0.0 \
|
||||||
--hash=sha256:e78be9c0a0dfcbac712fe04fbf92b96cddae80b1b842f24248214c8496f006ef \
|
--hash=sha256:e78be9c0a0dfcbac712fe04fbf92b96cddae80b1b842f24248214c8496f006ef \
|
||||||
--hash=sha256:4b26ff4e7110db76eeb6f5a7b64a82623839d595c2038eeda662f2a2db78e97c
|
--hash=sha256:4b26ff4e7110db76eeb6f5a7b64a82623839d595c2038eeda662f2a2db78e97c
|
||||||
ndg-httpsclient==0.4.0 \
|
|
||||||
--hash=sha256:e8c155fdebd9c4bcb0810b4ed01ae1987554b1ee034dd7532d7b8fdae38a6274
|
|
||||||
ordereddict==1.1 \
|
ordereddict==1.1 \
|
||||||
--hash=sha256:1c35b4ac206cef2d24816c89f89cf289dd3d38cf7c449bb3fab7bf6d43f01b1f
|
--hash=sha256:1c35b4ac206cef2d24816c89f89cf289dd3d38cf7c449bb3fab7bf6d43f01b1f
|
||||||
parsedatetime==2.1 \
|
parsedatetime==2.1 \
|
||||||
@@ -684,9 +727,9 @@ pyasn1==0.1.9 \
|
|||||||
--hash=sha256:5191ff6b9126d2c039dd87f8ff025bed274baf07fa78afa46f556b1ad7265d6e \
|
--hash=sha256:5191ff6b9126d2c039dd87f8ff025bed274baf07fa78afa46f556b1ad7265d6e \
|
||||||
--hash=sha256:8323e03637b2d072cc7041300bac6ec448c3c28950ab40376036788e9a1af629 \
|
--hash=sha256:8323e03637b2d072cc7041300bac6ec448c3c28950ab40376036788e9a1af629 \
|
||||||
--hash=sha256:853cacd96d1f701ddd67aa03ecc05f51890135b7262e922710112f12a2ed2a7f
|
--hash=sha256:853cacd96d1f701ddd67aa03ecc05f51890135b7262e922710112f12a2ed2a7f
|
||||||
pyopenssl==16.0.0 \
|
pyOpenSSL==16.2.0 \
|
||||||
--hash=sha256:5add70cf00273bf957ca31fdb0df9b0ae4639e081897d5f86a0ae1f104901230 \
|
--hash=sha256:26ca380ddf272f7556e48064bbcd5bd71f83dfc144f3583501c7ddbd9434ee17 \
|
||||||
--hash=sha256:363d10ee43d062285facf4e465f4f5163f9f702f9134f0a5896f134cbb92d17d
|
--hash=sha256:7779a3bbb74e79db234af6a08775568c6769b5821faecf6e2f4143edb227516e
|
||||||
pyparsing==2.1.8 \
|
pyparsing==2.1.8 \
|
||||||
--hash=sha256:2f0f5ceb14eccd5aef809d6382e87df22ca1da583c79f6db01675ce7d7f49c18 \
|
--hash=sha256:2f0f5ceb14eccd5aef809d6382e87df22ca1da583c79f6db01675ce7d7f49c18 \
|
||||||
--hash=sha256:03a4869b9f3493807ee1f1cb405e6d576a1a2ca4d81a982677c0c1ad6177c56b \
|
--hash=sha256:03a4869b9f3493807ee1f1cb405e6d576a1a2ca4d81a982677c0c1ad6177c56b \
|
||||||
@@ -701,9 +744,6 @@ pyRFC3339==1.0 \
|
|||||||
--hash=sha256:8dfbc6c458b8daba1c0f3620a8c78008b323a268b27b7359e92a4ae41325f535
|
--hash=sha256:8dfbc6c458b8daba1c0f3620a8c78008b323a268b27b7359e92a4ae41325f535
|
||||||
python-augeas==0.5.0 \
|
python-augeas==0.5.0 \
|
||||||
--hash=sha256:67d59d66cdba8d624e0389b87b2a83a176f21f16a87553b50f5703b23f29bac2
|
--hash=sha256:67d59d66cdba8d624e0389b87b2a83a176f21f16a87553b50f5703b23f29bac2
|
||||||
python2-pythondialog==3.3.0 \
|
|
||||||
--hash=sha256:04e93f24995c43dd90f338d5d865ca72ce3fb5a5358d4daa4965571db35fc3ec \
|
|
||||||
--hash=sha256:3e6f593fead98f8a526bc3e306933533236e33729f552f52896ea504f55313fa
|
|
||||||
pytz==2015.7 \
|
pytz==2015.7 \
|
||||||
--hash=sha256:3abe6a6d3fc2fbbe4c60144211f45da2edbe3182a6f6511af6bbba0598b1f992 \
|
--hash=sha256:3abe6a6d3fc2fbbe4c60144211f45da2edbe3182a6f6511af6bbba0598b1f992 \
|
||||||
--hash=sha256:939ef9c1e1224d980405689a97ffcf7828c56d1517b31d73464356c1f2b7769e \
|
--hash=sha256:939ef9c1e1224d980405689a97ffcf7828c56d1517b31d73464356c1f2b7769e \
|
||||||
@@ -718,9 +758,9 @@ pytz==2015.7 \
|
|||||||
--hash=sha256:fbd26746772c24cb93c8b97cbdad5cb9e46c86bbdb1b9d8a743ee00e2fb1fc5d \
|
--hash=sha256:fbd26746772c24cb93c8b97cbdad5cb9e46c86bbdb1b9d8a743ee00e2fb1fc5d \
|
||||||
--hash=sha256:99266ef30a37e43932deec2b7ca73e83c8dbc3b9ff703ec73eca6b1dae6befea \
|
--hash=sha256:99266ef30a37e43932deec2b7ca73e83c8dbc3b9ff703ec73eca6b1dae6befea \
|
||||||
--hash=sha256:8b6ce1c993909783bc96e0b4f34ea223bff7a4df2c90bdb9c4e0f1ac928689e3
|
--hash=sha256:8b6ce1c993909783bc96e0b4f34ea223bff7a4df2c90bdb9c4e0f1ac928689e3
|
||||||
requests==2.9.1 \
|
requests==2.12.1 \
|
||||||
--hash=sha256:113fbba5531a9e34945b7d36b33a084e8ba5d0664b703c81a7c572d91919a5b8 \
|
--hash=sha256:3f3f27a9d0f9092935efc78054ef324eb9f8166718270aefe036dfa1e4f68e1e \
|
||||||
--hash=sha256:c577815dd00f1394203fc44eb979724b098f88264a9ef898ee45b8e5e9cf587f
|
--hash=sha256:2109ecea94df90980be040490ff1d879971b024861539abb00054062388b612e
|
||||||
six==1.10.0 \
|
six==1.10.0 \
|
||||||
--hash=sha256:0ff78c403d9bccf5a425a6d31a12aa6b47f1c21ca4dc2573a7e2f32a97335eb1 \
|
--hash=sha256:0ff78c403d9bccf5a425a6d31a12aa6b47f1c21ca4dc2573a7e2f32a97335eb1 \
|
||||||
--hash=sha256:105f8d68616f8248e24bf0e9372ef04d3cc10104f1980f54d57b2ce73a5ad56a
|
--hash=sha256:105f8d68616f8248e24bf0e9372ef04d3cc10104f1980f54d57b2ce73a5ad56a
|
||||||
@@ -761,18 +801,18 @@ letsencrypt==0.7.0 \
|
|||||||
|
|
||||||
# THE LINES BELOW ARE EDITED BY THE RELEASE SCRIPT; ADD ALL DEPENDENCIES ABOVE.
|
# THE LINES BELOW ARE EDITED BY THE RELEASE SCRIPT; ADD ALL DEPENDENCIES ABOVE.
|
||||||
|
|
||||||
acme==0.9.3 \
|
acme==0.10.0 \
|
||||||
--hash=sha256:d18ce17a75ad24d27981dfaef0524aa905eab757b267e027162b56a8967ab8fb \
|
--hash=sha256:df4299a9881d94185a1578ed97334430a90f761ce815edd300860ca47d0538f1 \
|
||||||
--hash=sha256:a6eff1f955eb2e4316abd9aa2fedb6d9345e6b5b8a2d64ea0ad35e05d6124099
|
--hash=sha256:ddebdf1fe139c8fedbcf633955ec867496d2f7d2d2e9879d538437a69ab47876
|
||||||
certbot==0.9.3 \
|
certbot==0.10.0 \
|
||||||
--hash=sha256:a87ef4c53c018df4e52ee2f2e906ad16bbb37789f29e6f284c495a2eb4d9b243 \
|
--hash=sha256:fb1bfa3d54ce9366758e374f7ed99667ce20484224934d3e8e57839fcf784bc5 \
|
||||||
--hash=sha256:68149cb8392b29f5d5246e7226d25f913f2b10482bf3bc7368e8c8821d25f3b0
|
--hash=sha256:dd64ed8fb3cc3b053f05e779b934433445918668c49bcdbb2c816062815e1661
|
||||||
certbot-apache==0.9.3 \
|
certbot-apache==0.10.0 \
|
||||||
--hash=sha256:f379b1053e10709692654d7a6fcea9eaed19b66c49a753b61e31bd06a04b0aac \
|
--hash=sha256:909d59c53507093f838f7336f75d7d78563a35b16afdf6c30f45c9f47bf069da \
|
||||||
--hash=sha256:a5d98cf972072de08f984db4e6a7f20269f3f023c43f6d4e781fe43be7c10086
|
--hash=sha256:6f110dae227dd0fea9572fa12dd60b041e391f5d2028cc2e1fedd2a9a0d2bc88
|
||||||
certbot-nginx==0.9.3 \
|
certbot-nginx==0.10.0 \
|
||||||
--hash=sha256:3c26f18f0b57550f069263bd9b2984ef33eab6693e7796611c1b2cc16574069c \
|
--hash=sha256:4f33a230d420cbd0431e7b707fb9a1732bfd18d3c6056019591bd7c3a13abe92 \
|
||||||
--hash=sha256:7337a2e90e0b28a1ab09e31d9fb81c6d78e6453500c824c0f18bab5d31b63058
|
--hash=sha256:c12ffd05207b0be3c765b3d3e2927e0b2cc2b7de20654b19d154a0d789e7c1d5
|
||||||
|
|
||||||
UNLIKELY_EOF
|
UNLIKELY_EOF
|
||||||
# -------------------------------------------------------------------------
|
# -------------------------------------------------------------------------
|
||||||
@@ -940,7 +980,28 @@ UNLIKELY_EOF
|
|||||||
# Report error. (Otherwise, be quiet.)
|
# Report error. (Otherwise, be quiet.)
|
||||||
echo "Had a problem while installing Python packages."
|
echo "Had a problem while installing Python packages."
|
||||||
if [ "$VERBOSE" != 1 ]; then
|
if [ "$VERBOSE" != 1 ]; then
|
||||||
|
echo
|
||||||
|
echo "pip prints the following errors: "
|
||||||
|
echo "====================================================="
|
||||||
echo "$PIP_OUT"
|
echo "$PIP_OUT"
|
||||||
|
echo "====================================================="
|
||||||
|
echo
|
||||||
|
echo "Certbot has problem setting up the virtual environment."
|
||||||
|
|
||||||
|
if `echo $PIP_OUT | grep -q Killed` || `echo $PIP_OUT | grep -q "allocate memory"` ; then
|
||||||
|
echo
|
||||||
|
echo "Based on your pip output, the problem can likely be fixed by "
|
||||||
|
echo "increasing the available memory."
|
||||||
|
else
|
||||||
|
echo
|
||||||
|
echo "We were not be able to guess the right solution from your pip "
|
||||||
|
echo "output."
|
||||||
|
fi
|
||||||
|
|
||||||
|
echo
|
||||||
|
echo "Consult https://certbot.eff.org/docs/install.html#problems-with-python-virtual-environment"
|
||||||
|
echo "for possible solutions."
|
||||||
|
echo "You may also find some support resources at https://certbot.eff.org/support/ ."
|
||||||
fi
|
fi
|
||||||
rm -rf "$VENV_PATH"
|
rm -rf "$VENV_PATH"
|
||||||
exit 1
|
exit 1
|
||||||
@@ -1132,7 +1193,7 @@ UNLIKELY_EOF
|
|||||||
# TODO: Deal with quotes in pathnames.
|
# TODO: Deal with quotes in pathnames.
|
||||||
echo "Replacing certbot-auto..."
|
echo "Replacing certbot-auto..."
|
||||||
# Clone permissions with cp. chmod and chown don't have a --reference
|
# Clone permissions with cp. chmod and chown don't have a --reference
|
||||||
# option on OS X or BSD, and stat -c on Linux is stat -f on OS X and BSD:
|
# option on macOS or BSD, and stat -c on Linux is stat -f on macOS and BSD:
|
||||||
$SUDO cp -p "$0" "$TEMP_DIR/letsencrypt-auto.permission-clone"
|
$SUDO cp -p "$0" "$TEMP_DIR/letsencrypt-auto.permission-clone"
|
||||||
$SUDO cp "$TEMP_DIR/letsencrypt-auto" "$TEMP_DIR/letsencrypt-auto.permission-clone"
|
$SUDO cp "$TEMP_DIR/letsencrypt-auto" "$TEMP_DIR/letsencrypt-auto.permission-clone"
|
||||||
# Using mv rather than cp leaves the old file descriptor pointing to the
|
# Using mv rather than cp leaves the old file descriptor pointing to the
|
||||||
|
|||||||
@@ -4,7 +4,7 @@ from setuptools import setup
|
|||||||
from setuptools import find_packages
|
from setuptools import find_packages
|
||||||
|
|
||||||
|
|
||||||
version = '0.10.0.dev0'
|
version = '0.10.0'
|
||||||
|
|
||||||
install_requires = [
|
install_requires = [
|
||||||
'certbot',
|
'certbot',
|
||||||
|
|||||||
@@ -4,7 +4,7 @@ from setuptools import setup
|
|||||||
from setuptools import find_packages
|
from setuptools import find_packages
|
||||||
|
|
||||||
|
|
||||||
version = '0.10.0.dev0'
|
version = '0.10.0'
|
||||||
|
|
||||||
# Please update tox.ini when modifying dependency version requirements
|
# Please update tox.ini when modifying dependency version requirements
|
||||||
install_requires = [
|
install_requires = [
|
||||||
|
|||||||
@@ -1,4 +1,4 @@
|
|||||||
"""Certbot client."""
|
"""Certbot client."""
|
||||||
|
|
||||||
# version number like 1.2.3a0, must have at least 2 parts, like 1.2
|
# version number like 1.2.3a0, must have at least 2 parts, like 1.2
|
||||||
__version__ = '0.10.0.dev0'
|
__version__ = '0.10.0'
|
||||||
|
|||||||
@@ -1,39 +1,61 @@
|
|||||||
usage:
|
usage:
|
||||||
certbot [SUBCOMMAND] [options] [-d domain] [-d domain] ...
|
certbot [SUBCOMMAND] [options] [-d DOMAIN] [-d DOMAIN] ...
|
||||||
|
|
||||||
Certbot can obtain and install HTTPS/TLS/SSL certificates. By default,
|
Certbot can obtain and install HTTPS/TLS/SSL certificates. By default,
|
||||||
it will attempt to use a webserver both for obtaining and installing the
|
it will attempt to use a webserver both for obtaining and installing the
|
||||||
cert. Major SUBCOMMANDS are:
|
cert. The most common SUBCOMMANDS and flags are:
|
||||||
|
|
||||||
|
obtain, install, and renew certificates:
|
||||||
(default) run Obtain & install a cert in your current webserver
|
(default) run Obtain & install a cert in your current webserver
|
||||||
certonly Obtain cert, but do not install it (aka "auth")
|
certonly Obtain or renew a cert, but do not install it
|
||||||
install Install a previously obtained cert in a server
|
renew Renew all previously obtained certs that are near expiry
|
||||||
renew Renew previously obtained certs that are near expiry
|
-d DOMAINS Comma-separated list of domains to obtain a cert for
|
||||||
revoke Revoke a previously obtained certificate
|
|
||||||
register Perform tasks related to registering with the CA
|
--apache Use the Apache plugin for authentication & installation
|
||||||
rollback Rollback server configuration changes made during install
|
--standalone Run a standalone webserver for authentication
|
||||||
config_changes Show changes made to server config during installation
|
--nginx Use the Nginx plugin for authentication & installation
|
||||||
plugins Display information about installed plugins
|
--webroot Place files in a server's webroot folder for authentication
|
||||||
|
--manual Obtain certs interactively, or using shell script hooks
|
||||||
|
|
||||||
|
-n Run non-interactively
|
||||||
|
--test-cert Obtain a test cert from a staging server
|
||||||
|
--dry-run Test "renew" or "certonly" without saving any certs to disk
|
||||||
|
|
||||||
|
manage certificates:
|
||||||
|
certificates Display information about certs you have from Certbot
|
||||||
|
revoke Revoke a certificate (supply --cert-path)
|
||||||
|
delete Delete a certificate
|
||||||
|
|
||||||
|
manage your account with Let's Encrypt:
|
||||||
|
register Create a Let's Encrypt ACME account
|
||||||
|
--agree-tos Agree to the ACME server's Subscriber Agreement
|
||||||
|
-m EMAIL Email address for important account notifications
|
||||||
|
|
||||||
optional arguments:
|
optional arguments:
|
||||||
-h, --help show this help message and exit
|
-h, --help show this help message and exit
|
||||||
-c CONFIG_FILE, --config CONFIG_FILE
|
-c CONFIG_FILE, --config CONFIG_FILE
|
||||||
config file path (default: None)
|
path to config file (default: /etc/letsencrypt/cli.ini
|
||||||
|
and ~/.config/letsencrypt/cli.ini)
|
||||||
-v, --verbose This flag can be used multiple times to incrementally
|
-v, --verbose This flag can be used multiple times to incrementally
|
||||||
increase the verbosity of output, e.g. -vvv. (default:
|
increase the verbosity of output, e.g. -vvv. (default:
|
||||||
-2)
|
-2)
|
||||||
-t, --text Use the text output instead of the curses UI.
|
|
||||||
(default: False)
|
|
||||||
-n, --non-interactive, --noninteractive
|
-n, --non-interactive, --noninteractive
|
||||||
Run without ever asking for user input. This may
|
Run without ever asking for user input. This may
|
||||||
require additional command line flags; the client will
|
require additional command line flags; the client will
|
||||||
try to explain which ones are required if it finds one
|
try to explain which ones are required if it finds one
|
||||||
missing (default: False)
|
missing (default: False)
|
||||||
--dialog Run using interactive dialog menus (default: False)
|
--force-interactive Force Certbot to be interactive even if it detects
|
||||||
|
it's not being run in a terminal. This flag cannot be
|
||||||
|
used with the renew subcommand. (default: False)
|
||||||
-d DOMAIN, --domains DOMAIN, --domain DOMAIN
|
-d DOMAIN, --domains DOMAIN, --domain DOMAIN
|
||||||
Domain names to apply. For multiple domains you can
|
Domain names to apply. For multiple domains you can
|
||||||
use multiple -d flags or enter a comma separated list
|
use multiple -d flags or enter a comma separated list
|
||||||
of domains as a parameter. (default: [])
|
of domains as a parameter. (default: Ask)
|
||||||
|
--cert-name CERTNAME Certificate name to apply. Only one certificate name
|
||||||
|
can be used per Certbot run. To see certificate names,
|
||||||
|
run 'certbot certificates'. When creating a new
|
||||||
|
certificate, specifies the new certificate's name.
|
||||||
|
(default: None)
|
||||||
--dry-run Perform a test run of the client, obtaining test
|
--dry-run Perform a test run of the client, obtaining test
|
||||||
(invalid) certs but not saving them to disk. This can
|
(invalid) certs but not saving them to disk. This can
|
||||||
currently only be used with the 'certonly' and 'renew'
|
currently only be used with the 'certonly' and 'renew'
|
||||||
@@ -48,6 +70,219 @@ optional arguments:
|
|||||||
because they may be necessary to accurately simulate
|
because they may be necessary to accurately simulate
|
||||||
renewal. --renew-hook commands are not called.
|
renewal. --renew-hook commands are not called.
|
||||||
(default: False)
|
(default: False)
|
||||||
|
--preferred-challenges PREF_CHALLS
|
||||||
|
A sorted, comma delimited list of the preferred
|
||||||
|
challenge to use during authorization with the most
|
||||||
|
preferred challenge listed first (Eg, "dns" or "tls-
|
||||||
|
sni-01,http,dns"). Not all plugins support all
|
||||||
|
challenges. See
|
||||||
|
https://certbot.eff.org/docs/using.html#plugins for
|
||||||
|
details. ACME Challenges are versioned, but if you
|
||||||
|
pick "http" rather than "http-01", Certbot will select
|
||||||
|
the latest version automatically. (default: [])
|
||||||
|
--user-agent USER_AGENT
|
||||||
|
Set a custom user agent string for the client. User
|
||||||
|
agent strings allow the CA to collect high level
|
||||||
|
statistics about success rates by OS and plugin. If
|
||||||
|
you wish to hide your server OS version from the Let's
|
||||||
|
Encrypt server, set this to "". (default:
|
||||||
|
CertbotACMEClient/0.10.0 (Ubuntu 16.04.1 LTS)
|
||||||
|
Authenticator/XXX Installer/YYY)
|
||||||
|
|
||||||
|
automation:
|
||||||
|
Arguments for automating execution & other tweaks
|
||||||
|
|
||||||
|
--keep-until-expiring, --keep, --reinstall
|
||||||
|
If the requested cert matches an existing cert, always
|
||||||
|
keep the existing one until it is due for renewal (for
|
||||||
|
the 'run' subcommand this means reinstall the existing
|
||||||
|
cert). (default: Ask)
|
||||||
|
--expand If an existing cert covers some subset of the
|
||||||
|
requested names, always expand and replace it with the
|
||||||
|
additional names. (default: Ask)
|
||||||
|
--version show program's version number and exit
|
||||||
|
--force-renewal, --renew-by-default
|
||||||
|
If a certificate already exists for the requested
|
||||||
|
domains, renew it now, regardless of whether it is
|
||||||
|
near expiry. (Often --keep-until-expiring is more
|
||||||
|
appropriate). Also implies --expand. (default: False)
|
||||||
|
--renew-with-new-domains
|
||||||
|
If a certificate already exists for the requested
|
||||||
|
certificate name but does not match the requested
|
||||||
|
domains, renew it now, regardless of whether it is
|
||||||
|
near expiry. (default: False)
|
||||||
|
--allow-subset-of-names
|
||||||
|
When performing domain validation, do not consider it
|
||||||
|
a failure if authorizations can not be obtained for a
|
||||||
|
strict subset of the requested domains. This may be
|
||||||
|
useful for allowing renewals for multiple domains to
|
||||||
|
succeed even if some domains no longer point at this
|
||||||
|
system. This option cannot be used with --csr.
|
||||||
|
(default: False)
|
||||||
|
--agree-tos Agree to the ACME Subscriber Agreement (default: Ask)
|
||||||
|
--account ACCOUNT_ID Account ID to use (default: None)
|
||||||
|
--duplicate Allow making a certificate lineage that duplicates an
|
||||||
|
existing one (both can be renewed in parallel)
|
||||||
|
(default: False)
|
||||||
|
--os-packages-only (certbot-auto only) install OS package dependencies
|
||||||
|
and then stop (default: False)
|
||||||
|
--no-self-upgrade (certbot-auto only) prevent the certbot-auto script
|
||||||
|
from upgrading itself to newer released versions
|
||||||
|
(default: Upgrade automatically)
|
||||||
|
-q, --quiet Silence all output except errors. Useful for
|
||||||
|
automation via cron. Implies --non-interactive.
|
||||||
|
(default: False)
|
||||||
|
|
||||||
|
security:
|
||||||
|
Security parameters & server settings
|
||||||
|
|
||||||
|
--rsa-key-size N Size of the RSA key. (default: 2048)
|
||||||
|
--must-staple Adds the OCSP Must Staple extension to the
|
||||||
|
certificate. Autoconfigures OCSP Stapling for
|
||||||
|
supported setups (Apache version >= 2.3.3 ). (default:
|
||||||
|
False)
|
||||||
|
--redirect Automatically redirect all HTTP traffic to HTTPS for
|
||||||
|
the newly authenticated vhost. (default: Ask)
|
||||||
|
--no-redirect Do not automatically redirect all HTTP traffic to
|
||||||
|
HTTPS for the newly authenticated vhost. (default:
|
||||||
|
Ask)
|
||||||
|
--hsts Add the Strict-Transport-Security header to every HTTP
|
||||||
|
response. Forcing browser to always use SSL for the
|
||||||
|
domain. Defends against SSL Stripping. (default:
|
||||||
|
False)
|
||||||
|
--uir Add the "Content-Security-Policy: upgrade-insecure-
|
||||||
|
requests" header to every HTTP response. Forcing the
|
||||||
|
browser to use https:// for every http:// resource.
|
||||||
|
(default: None)
|
||||||
|
--staple-ocsp Enables OCSP Stapling. A valid OCSP response is
|
||||||
|
stapled to the certificate that the server offers
|
||||||
|
during TLS. (default: None)
|
||||||
|
--strict-permissions Require that all configuration files are owned by the
|
||||||
|
current user; only needed if your config is somewhere
|
||||||
|
unsafe like /tmp/ (default: False)
|
||||||
|
|
||||||
|
testing:
|
||||||
|
The following flags are meant for testing and integration purposes only.
|
||||||
|
|
||||||
|
--test-cert, --staging
|
||||||
|
Use the staging server to obtain or revoke test
|
||||||
|
(invalid) certs; equivalent to --server https://acme-
|
||||||
|
staging.api.letsencrypt.org/directory (default: False)
|
||||||
|
--debug Show tracebacks in case of errors, and allow certbot-
|
||||||
|
auto execution on experimental platforms (default:
|
||||||
|
False)
|
||||||
|
--no-verify-ssl Disable verification of the ACME server's certificate.
|
||||||
|
(default: False)
|
||||||
|
--tls-sni-01-port TLS_SNI_01_PORT
|
||||||
|
Port used during tls-sni-01 challenge. This only
|
||||||
|
affects the port Certbot listens on. A conforming ACME
|
||||||
|
server will still attempt to connect on port 443.
|
||||||
|
(default: 443)
|
||||||
|
--http-01-port HTTP01_PORT
|
||||||
|
Port used in the http-01 challenge. This only affects
|
||||||
|
the port Certbot listens on. A conforming ACME server
|
||||||
|
will still attempt to connect on port 80. (default:
|
||||||
|
80)
|
||||||
|
--break-my-certs Be willing to replace or renew valid certs with
|
||||||
|
invalid (testing/staging) certs (default: False)
|
||||||
|
|
||||||
|
paths:
|
||||||
|
Arguments changing execution paths & servers
|
||||||
|
|
||||||
|
--cert-path CERT_PATH
|
||||||
|
Path to where cert is saved (with auth --csr),
|
||||||
|
installed from, or revoked. (default: None)
|
||||||
|
--key-path KEY_PATH Path to private key for cert installation or
|
||||||
|
revocation (if account key is missing) (default: None)
|
||||||
|
--chain-path CHAIN_PATH
|
||||||
|
Accompanying path to a certificate chain. (default:
|
||||||
|
None)
|
||||||
|
--config-dir CONFIG_DIR
|
||||||
|
Configuration directory. (default: /etc/letsencrypt)
|
||||||
|
--work-dir WORK_DIR Working directory. (default: /var/lib/letsencrypt)
|
||||||
|
--logs-dir LOGS_DIR Logs directory. (default: /var/log/letsencrypt)
|
||||||
|
--server SERVER ACME Directory Resource URI. (default:
|
||||||
|
https://acme-v01.api.letsencrypt.org/directory)
|
||||||
|
|
||||||
|
manage:
|
||||||
|
Various subcommands and flags are available for managing your
|
||||||
|
certificates:
|
||||||
|
|
||||||
|
certificates List certificates managed by Certbot
|
||||||
|
delete Clean up all files related to a certificate
|
||||||
|
renew Renew all certificates (or one specifed with --cert-
|
||||||
|
name)
|
||||||
|
revoke Revoke a certificate specified with --cert-path
|
||||||
|
update_symlinks Recreate symlinks in your /etc/letsencrypt/live/
|
||||||
|
directory
|
||||||
|
|
||||||
|
run:
|
||||||
|
Options for obtaining & installing certs
|
||||||
|
|
||||||
|
certonly:
|
||||||
|
Options for modifying how a cert is obtained
|
||||||
|
|
||||||
|
--csr CSR Path to a Certificate Signing Request (CSR) in DER or
|
||||||
|
PEM format. Currently --csr only works with the
|
||||||
|
'certonly' subcommand. (default: None)
|
||||||
|
|
||||||
|
renew:
|
||||||
|
The 'renew' subcommand will attempt to renew all certificates (or more
|
||||||
|
precisely, certificate lineages) you have previously obtained if they are
|
||||||
|
close to expiry, and print a summary of the results. By default, 'renew'
|
||||||
|
will reuse the options used to create obtain or most recently successfully
|
||||||
|
renew each certificate lineage. You can try it with `--dry-run` first. For
|
||||||
|
more fine-grained control, you can renew individual lineages with the
|
||||||
|
`certonly` subcommand. Hooks are available to run commands before and
|
||||||
|
after renewal; see https://certbot.eff.org/docs/using.html#renewal for
|
||||||
|
more information on these.
|
||||||
|
|
||||||
|
--pre-hook PRE_HOOK Command to be run in a shell before obtaining any
|
||||||
|
certificates. Intended primarily for renewal, where it
|
||||||
|
can be used to temporarily shut down a webserver that
|
||||||
|
might conflict with the standalone plugin. This will
|
||||||
|
only be called if a certificate is actually to be
|
||||||
|
obtained/renewed. When renewing several certificates
|
||||||
|
that have identical pre-hooks, only the first will be
|
||||||
|
executed. (default: None)
|
||||||
|
--post-hook POST_HOOK
|
||||||
|
Command to be run in a shell after attempting to
|
||||||
|
obtain/renew certificates. Can be used to deploy
|
||||||
|
renewed certificates, or to restart any servers that
|
||||||
|
were stopped by --pre-hook. This is only run if an
|
||||||
|
attempt was made to obtain/renew a certificate. If
|
||||||
|
multiple renewed certificates have identical post-
|
||||||
|
hooks, only one will be run. (default: None)
|
||||||
|
--renew-hook RENEW_HOOK
|
||||||
|
Command to be run in a shell once for each
|
||||||
|
successfully renewed certificate. For this command,
|
||||||
|
the shell variable $RENEWED_LINEAGE will point to the
|
||||||
|
config live subdirectory containing the new certs and
|
||||||
|
keys; the shell variable $RENEWED_DOMAINS will contain
|
||||||
|
a space-delimited list of renewed cert domains
|
||||||
|
(default: None)
|
||||||
|
--disable-hook-validation
|
||||||
|
Ordinarily the commands specified for --pre-hook
|
||||||
|
/--post-hook/--renew-hook will be checked for
|
||||||
|
validity, to see if the programs being run are in the
|
||||||
|
$PATH, so that mistakes can be caught early, even when
|
||||||
|
the hooks aren't being run just yet. The validation is
|
||||||
|
rather simplistic and fails if you use more advanced
|
||||||
|
shell constructs, so you can use this switch to
|
||||||
|
disable it. (default: False)
|
||||||
|
|
||||||
|
certificates:
|
||||||
|
List certificates managed by Certbot
|
||||||
|
|
||||||
|
delete:
|
||||||
|
Options for deleting a certificate
|
||||||
|
|
||||||
|
revoke:
|
||||||
|
Options for revocation of certs
|
||||||
|
|
||||||
|
register:
|
||||||
|
Options for account registration & modification
|
||||||
|
|
||||||
--register-unsafely-without-email
|
--register-unsafely-without-email
|
||||||
Specifying this flag enables registering an account
|
Specifying this flag enables registering an account
|
||||||
with no email address. This is strongly discouraged,
|
with no email address. This is strongly discouraged,
|
||||||
@@ -65,220 +300,38 @@ optional arguments:
|
|||||||
registering a new account. (default: False)
|
registering a new account. (default: False)
|
||||||
-m EMAIL, --email EMAIL
|
-m EMAIL, --email EMAIL
|
||||||
Email used for registration and recovery contact.
|
Email used for registration and recovery contact.
|
||||||
(default: None)
|
(default: Ask)
|
||||||
--preferred-challenges PREF_CHALLS
|
|
||||||
A sorted, comma delimited list of the preferred
|
|
||||||
challenge to use during authorization with the most
|
|
||||||
preferred challenge listed first (Eg, "dns" or "tls-
|
|
||||||
sni-01,http,dns"). Not all plugins support all
|
|
||||||
challenges. See
|
|
||||||
https://certbot.eff.org/docs/using.html#plugins for
|
|
||||||
details. ACME Challenges are versioned, but if you
|
|
||||||
pick "http" rather than "http-01", Certbot will select
|
|
||||||
the latest version automatically. (default: [])
|
|
||||||
--user-agent USER_AGENT
|
|
||||||
Set a custom user agent string for the client. User
|
|
||||||
agent strings allow the CA to collect high level
|
|
||||||
statistics about success rates by OS and plugin. If
|
|
||||||
you wish to hide your server OS version from the Let's
|
|
||||||
Encrypt server, set this to "". (default: None)
|
|
||||||
|
|
||||||
automation:
|
|
||||||
Arguments for automating execution & other tweaks
|
|
||||||
|
|
||||||
--keep-until-expiring, --keep, --reinstall
|
|
||||||
If the requested cert matches an existing cert, always
|
|
||||||
keep the existing one until it is due for renewal (for
|
|
||||||
the 'run' subcommand this means reinstall the existing
|
|
||||||
cert) (default: False)
|
|
||||||
--expand If an existing cert covers some subset of the
|
|
||||||
requested names, always expand and replace it with the
|
|
||||||
additional names. (default: False)
|
|
||||||
--version show program's version number and exit
|
|
||||||
--force-renewal, --renew-by-default
|
|
||||||
If a certificate already exists for the requested
|
|
||||||
domains, renew it now, regardless of whether it is
|
|
||||||
near expiry. (Often --keep-until-expiring is more
|
|
||||||
appropriate). Also implies --expand. (default: False)
|
|
||||||
--allow-subset-of-names
|
|
||||||
When performing domain validation, do not consider it
|
|
||||||
a failure if authorizations can not be obtained for a
|
|
||||||
strict subset of the requested domains. This may be
|
|
||||||
useful for allowing renewals for multiple domains to
|
|
||||||
succeed even if some domains no longer point at this
|
|
||||||
system. This option cannot be used with --csr.
|
|
||||||
(default: False)
|
|
||||||
--agree-tos Agree to the ACME Subscriber Agreement (default:
|
|
||||||
False)
|
|
||||||
--account ACCOUNT_ID Account ID to use (default: None)
|
|
||||||
--duplicate Allow making a certificate lineage that duplicates an
|
|
||||||
existing one (both can be renewed in parallel)
|
|
||||||
(default: False)
|
|
||||||
--os-packages-only (certbot-auto only) install OS package dependencies
|
|
||||||
and then stop (default: False)
|
|
||||||
--no-self-upgrade (certbot-auto only) prevent the certbot-auto script
|
|
||||||
from upgrading itself to newer released versions
|
|
||||||
(default: False)
|
|
||||||
-q, --quiet Silence all output except errors. Useful for
|
|
||||||
automation via cron. Implies --non-interactive.
|
|
||||||
(default: False)
|
|
||||||
|
|
||||||
security:
|
|
||||||
Security parameters & server settings
|
|
||||||
|
|
||||||
--rsa-key-size N Size of the RSA key. (default: 2048)
|
|
||||||
--must-staple Adds the OCSP Must Staple extension to the
|
|
||||||
certificate. Autoconfigures OCSP Stapling for
|
|
||||||
supported setups (Apache version >= 2.3.3 ). (default:
|
|
||||||
False)
|
|
||||||
--redirect Automatically redirect all HTTP traffic to HTTPS for
|
|
||||||
the newly authenticated vhost. (default: None)
|
|
||||||
--no-redirect Do not automatically redirect all HTTP traffic to
|
|
||||||
HTTPS for the newly authenticated vhost. (default:
|
|
||||||
None)
|
|
||||||
--hsts Add the Strict-Transport-Security header to every HTTP
|
|
||||||
response. Forcing browser to always use SSL for the
|
|
||||||
domain. Defends against SSL Stripping. (default:
|
|
||||||
False)
|
|
||||||
--no-hsts Do not automatically add the Strict-Transport-Security
|
|
||||||
header to every HTTP response. (default: False)
|
|
||||||
--uir Add the "Content-Security-Policy: upgrade-insecure-
|
|
||||||
requests" header to every HTTP response. Forcing the
|
|
||||||
browser to use https:// for every http:// resource.
|
|
||||||
(default: None)
|
|
||||||
--no-uir Do not automatically set the "Content-Security-Policy:
|
|
||||||
upgrade-insecure-requests" header to every HTTP
|
|
||||||
response. (default: None)
|
|
||||||
--staple-ocsp Enables OCSP Stapling. A valid OCSP response is
|
|
||||||
stapled to the certificate that the server offers
|
|
||||||
during TLS. (default: None)
|
|
||||||
--no-staple-ocsp Do not automatically enable OCSP Stapling. (default:
|
|
||||||
None)
|
|
||||||
--strict-permissions Require that all configuration files are owned by the
|
|
||||||
current user; only needed if your config is somewhere
|
|
||||||
unsafe like /tmp/ (default: False)
|
|
||||||
|
|
||||||
testing:
|
|
||||||
The following flags are meant for testing purposes only! Do NOT change
|
|
||||||
them, unless you really know what you're doing!
|
|
||||||
|
|
||||||
--test-cert, --staging
|
|
||||||
Use the staging server to obtain test (invalid) certs;
|
|
||||||
equivalent to --server https://acme-
|
|
||||||
staging.api.letsencrypt.org/directory (default: False)
|
|
||||||
--debug Show tracebacks in case of errors, and allow certbot-
|
|
||||||
auto execution on experimental platforms (default:
|
|
||||||
False)
|
|
||||||
--no-verify-ssl Disable verification of the ACME server's certificate.
|
|
||||||
(default: False)
|
|
||||||
--break-my-certs Be willing to replace or renew valid certs with
|
|
||||||
invalid (testing/staging) certs (default: False)
|
|
||||||
|
|
||||||
renew:
|
|
||||||
The 'renew' subcommand will attempt to renew all certificates (or more
|
|
||||||
precisely, certificate lineages) you have previously obtained if they are
|
|
||||||
close to expiry, and print a summary of the results. By default, 'renew'
|
|
||||||
will reuse the options used to create, obtain or most recently successfully
|
|
||||||
renew each certificate lineage. You can try it with `--dry-run` first. For
|
|
||||||
more fine-grained control, you can renew individual lineages with the
|
|
||||||
`certonly` subcommand. Hooks are available to run commands before and
|
|
||||||
after renewal; see https://certbot.eff.org/docs/using.html#renewal for
|
|
||||||
more information on these.
|
|
||||||
|
|
||||||
--pre-hook PRE_HOOK Command to be run in a shell before obtaining any
|
|
||||||
certificates. Intended primarily for renewal, where it
|
|
||||||
can be used to temporarily shut down a webserver that
|
|
||||||
might conflict with the standalone plugin. This will
|
|
||||||
only be called if a certificate is actually to be
|
|
||||||
obtained/renewed. (default: None)
|
|
||||||
--post-hook POST_HOOK
|
|
||||||
Command to be run in a shell after attempting to
|
|
||||||
obtain/renew certificates. Can be used to deploy
|
|
||||||
renewed certificates, or to restart any servers that
|
|
||||||
were stopped by --pre-hook. This is only run if an
|
|
||||||
attempt was made to obtain/renew a certificate.
|
|
||||||
(default: None)
|
|
||||||
--renew-hook RENEW_HOOK
|
|
||||||
Command to be run in a shell once for each
|
|
||||||
successfully renewed certificate. For this command,
|
|
||||||
the shell variable $RENEWED_LINEAGE will point to the
|
|
||||||
config live subdirectory containing the new certs and
|
|
||||||
keys; the shell variable $RENEWED_DOMAINS will contain
|
|
||||||
a space-delimited list of renewed cert domains
|
|
||||||
(default: None)
|
|
||||||
--disable-hook-validation
|
|
||||||
Ordinarily the commands specified for --pre-hook
|
|
||||||
/--post-hook/--renew-hook will be checked for
|
|
||||||
validity, to see if the programs being run are in the
|
|
||||||
$PATH, so that mistakes can be caught early, even when
|
|
||||||
the hooks aren't being run just yet. The validation is
|
|
||||||
rather simplistic and fails if you use more advanced
|
|
||||||
shell constructs, so you can use this switch to
|
|
||||||
disable it. (default: True)
|
|
||||||
|
|
||||||
certonly:
|
|
||||||
Options for modifying how a cert is obtained
|
|
||||||
|
|
||||||
--tls-sni-01-port TLS_SNI_01_PORT
|
|
||||||
Port used during tls-sni-01 challenge. This only
|
|
||||||
affects the port Certbot listens on. A conforming ACME
|
|
||||||
server will still attempt to connect on port 443.
|
|
||||||
(default: 443)
|
|
||||||
--http-01-port HTTP01_PORT
|
|
||||||
Port used in the http-01 challenge. This only affects
|
|
||||||
the port Certbot listens on. A conforming ACME server
|
|
||||||
will still attempt to connect on port 80. (default:
|
|
||||||
80)
|
|
||||||
--csr CSR Path to a Certificate Signing Request (CSR) in DER or
|
|
||||||
PEM format. Currently --csr only works with the
|
|
||||||
'certonly' subcommand. (default: None)
|
|
||||||
|
|
||||||
install:
|
install:
|
||||||
Options for modifying how a cert is deployed
|
Options for modifying how a cert is deployed
|
||||||
|
|
||||||
revoke:
|
--fullchain-path FULLCHAIN_PATH
|
||||||
Options for revocation of certs
|
Accompanying path to a full certificate chain (cert
|
||||||
|
plus chain). (default: None)
|
||||||
|
|
||||||
|
config_changes:
|
||||||
|
Options for controlling which changes are displayed
|
||||||
|
|
||||||
|
--num NUM How many past revisions you want to be displayed
|
||||||
|
(default: None)
|
||||||
|
|
||||||
rollback:
|
rollback:
|
||||||
Options for reverting config changes
|
Options for rolling back server configuration changes
|
||||||
|
|
||||||
--checkpoints N Revert configuration N number of checkpoints.
|
--checkpoints N Revert configuration N number of checkpoints.
|
||||||
(default: 1)
|
(default: 1)
|
||||||
|
|
||||||
plugins:
|
plugins:
|
||||||
Options for the "plugins" subcommand
|
Options for for the "plugins" subcommand
|
||||||
|
|
||||||
--init Initialize plugins. (default: False)
|
--init Initialize plugins. (default: False)
|
||||||
--prepare Initialize and prepare plugins. (default: False)
|
--prepare Initialize and prepare plugins. (default: False)
|
||||||
--authenticators Limit to authenticator plugins only. (default: None)
|
--authenticators Limit to authenticator plugins only. (default: None)
|
||||||
--installers Limit to installer plugins only. (default: None)
|
--installers Limit to installer plugins only. (default: None)
|
||||||
|
|
||||||
config_changes:
|
update_symlinks:
|
||||||
Options for showing a history of config changes
|
Recreates cert and key symlinks in /etc/letsencrypt/live, if you changed
|
||||||
|
them by hand or edited a renewal configuration file
|
||||||
--num NUM How many past revisions you want to be displayed
|
|
||||||
(default: None)
|
|
||||||
|
|
||||||
paths:
|
|
||||||
Arguments changing execution paths & servers
|
|
||||||
|
|
||||||
--cert-path CERT_PATH
|
|
||||||
Path to where cert is saved (with auth --csr),
|
|
||||||
installed from or revoked. (default: None)
|
|
||||||
--key-path KEY_PATH Path to private key for cert installation or
|
|
||||||
revocation (if account key is missing) (default: None)
|
|
||||||
--fullchain-path FULLCHAIN_PATH
|
|
||||||
Accompanying path to a full certificate chain (cert
|
|
||||||
plus chain). (default: None)
|
|
||||||
--chain-path CHAIN_PATH
|
|
||||||
Accompanying path to a certificate chain. (default:
|
|
||||||
None)
|
|
||||||
--config-dir CONFIG_DIR
|
|
||||||
Configuration directory. (default: /etc/letsencrypt)
|
|
||||||
--work-dir WORK_DIR Working directory. (default: /var/lib/letsencrypt)
|
|
||||||
--logs-dir LOGS_DIR Logs directory. (default: /var/log/letsencrypt)
|
|
||||||
--server SERVER ACME Directory Resource URI. (default:
|
|
||||||
https://acme-v01.api.letsencrypt.org/directory)
|
|
||||||
|
|
||||||
plugins:
|
plugins:
|
||||||
Plugin Selection: Certbot client supports an extensible plugins
|
Plugin Selection: Certbot client supports an extensible plugins
|
||||||
@@ -287,15 +340,15 @@ plugins:
|
|||||||
provided below. Running --help <plugin_name> will list flags specific to
|
provided below. Running --help <plugin_name> will list flags specific to
|
||||||
that plugin.
|
that plugin.
|
||||||
|
|
||||||
|
--configurator CONFIGURATOR
|
||||||
|
Name of the plugin that is both an authenticator and
|
||||||
|
an installer. Should not be used together with
|
||||||
|
--authenticator or --installer. (default: Ask)
|
||||||
-a AUTHENTICATOR, --authenticator AUTHENTICATOR
|
-a AUTHENTICATOR, --authenticator AUTHENTICATOR
|
||||||
Authenticator plugin name. (default: None)
|
Authenticator plugin name. (default: None)
|
||||||
-i INSTALLER, --installer INSTALLER
|
-i INSTALLER, --installer INSTALLER
|
||||||
Installer plugin name (also used to find domains).
|
Installer plugin name (also used to find domains).
|
||||||
(default: None)
|
(default: None)
|
||||||
--configurator CONFIGURATOR
|
|
||||||
Name of the plugin that is both an authenticator and
|
|
||||||
an installer. Should not be used together with
|
|
||||||
--authenticator or --installer. (default: None)
|
|
||||||
--apache Obtain and install certs using Apache (default: False)
|
--apache Obtain and install certs using Apache (default: False)
|
||||||
--nginx Obtain and install certs using Nginx (default: False)
|
--nginx Obtain and install certs using Nginx (default: False)
|
||||||
--standalone Obtain certs using a "standalone" webserver. (default:
|
--standalone Obtain certs using a "standalone" webserver. (default:
|
||||||
@@ -318,13 +371,24 @@ standalone:
|
|||||||
Spin up a temporary webserver
|
Spin up a temporary webserver
|
||||||
|
|
||||||
manual:
|
manual:
|
||||||
Manually configure an HTTP server
|
Authenticate through manual configuration or custom shell scripts. When
|
||||||
|
using shell scripts, an authenticator script must be provided. The
|
||||||
|
environment variables available to this script are $CERTBOT_DOMAIN which
|
||||||
|
contains the domain being authenticated, $CERTBOT_VALIDATION which is the
|
||||||
|
validation string, and $CERTBOT_TOKEN which is the filename of the
|
||||||
|
resource requested when performing an HTTP-01 challenge. An additional
|
||||||
|
cleanup script can also be provided and can use the additional variable
|
||||||
|
$CERTBOT_AUTH_OUTPUT which contains the stdout output from the auth
|
||||||
|
script.
|
||||||
|
|
||||||
--manual-test-mode Test mode. Executes the manual command in subprocess.
|
--manual-auth-hook MANUAL_AUTH_HOOK
|
||||||
(default: False)
|
Path or command to execute for the authentication
|
||||||
|
script (default: None)
|
||||||
|
--manual-cleanup-hook MANUAL_CLEANUP_HOOK
|
||||||
|
Path or command to execute for the cleanup script
|
||||||
|
(default: None)
|
||||||
--manual-public-ip-logging-ok
|
--manual-public-ip-logging-ok
|
||||||
Automatically allows public IP logging. (default:
|
Automatically allows public IP logging (default: Ask)
|
||||||
False)
|
|
||||||
|
|
||||||
webroot:
|
webroot:
|
||||||
Place files in webroot directory
|
Place files in webroot directory
|
||||||
@@ -335,7 +399,7 @@ webroot:
|
|||||||
domain will have the webroot path that preceded it.
|
domain will have the webroot path that preceded it.
|
||||||
For instance: `-w /var/www/example -d example.com -d
|
For instance: `-w /var/www/example -d example.com -d
|
||||||
www.example.com -w /var/www/thing -d thing.net -d
|
www.example.com -w /var/www/thing -d thing.net -d
|
||||||
m.thing.net` (default: [])
|
m.thing.net` (default: Ask)
|
||||||
--webroot-map WEBROOT_MAP
|
--webroot-map WEBROOT_MAP
|
||||||
JSON dictionary mapping domains to webroot paths; this
|
JSON dictionary mapping domains to webroot paths; this
|
||||||
implies -d for each entry. You may need to escape this
|
implies -d for each entry. You may need to escape this
|
||||||
|
|||||||
223
letsencrypt-auto
223
letsencrypt-auto
@@ -15,11 +15,15 @@ set -e # Work even if somebody does "sh thisscript.sh".
|
|||||||
|
|
||||||
# Note: you can set XDG_DATA_HOME or VENV_PATH before running this script,
|
# Note: you can set XDG_DATA_HOME or VENV_PATH before running this script,
|
||||||
# if you want to change where the virtual environment will be installed
|
# if you want to change where the virtual environment will be installed
|
||||||
XDG_DATA_HOME=${XDG_DATA_HOME:-~/.local/share}
|
if [ -z "$XDG_DATA_HOME" ]; then
|
||||||
|
XDG_DATA_HOME=~/.local/share
|
||||||
|
fi
|
||||||
VENV_NAME="letsencrypt"
|
VENV_NAME="letsencrypt"
|
||||||
VENV_PATH=${VENV_PATH:-"$XDG_DATA_HOME/$VENV_NAME"}
|
if [ -z "$VENV_PATH" ]; then
|
||||||
|
VENV_PATH="$XDG_DATA_HOME/$VENV_NAME"
|
||||||
|
fi
|
||||||
VENV_BIN="$VENV_PATH/bin"
|
VENV_BIN="$VENV_PATH/bin"
|
||||||
LE_AUTO_VERSION="0.9.3"
|
LE_AUTO_VERSION="0.10.0"
|
||||||
BASENAME=$(basename $0)
|
BASENAME=$(basename $0)
|
||||||
USAGE="Usage: $BASENAME [OPTIONS]
|
USAGE="Usage: $BASENAME [OPTIONS]
|
||||||
A self-updating wrapper script for the Certbot ACME client. When run, updates
|
A self-updating wrapper script for the Certbot ACME client. When run, updates
|
||||||
@@ -58,6 +62,7 @@ for arg in "$@" ; do
|
|||||||
--verbose)
|
--verbose)
|
||||||
VERBOSE=1;;
|
VERBOSE=1;;
|
||||||
-[!-]*)
|
-[!-]*)
|
||||||
|
OPTIND=1
|
||||||
while getopts ":hnvq" short_arg $arg; do
|
while getopts ":hnvq" short_arg $arg; do
|
||||||
case "$short_arg" in
|
case "$short_arg" in
|
||||||
h)
|
h)
|
||||||
@@ -79,22 +84,27 @@ if [ $BASENAME = "letsencrypt-auto" ]; then
|
|||||||
HELP=0
|
HELP=0
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
# Support for busybox and others where there is no "command",
|
||||||
|
# but "which" instead
|
||||||
|
if command -v command > /dev/null 2>&1 ; then
|
||||||
|
export EXISTS="command -v"
|
||||||
|
elif which which > /dev/null 2>&1 ; then
|
||||||
|
export EXISTS="which"
|
||||||
|
else
|
||||||
|
echo "Cannot find command nor which... please install one!"
|
||||||
|
exit 1
|
||||||
|
fi
|
||||||
|
|
||||||
# certbot-auto needs root access to bootstrap OS dependencies, and
|
# certbot-auto needs root access to bootstrap OS dependencies, and
|
||||||
# certbot itself needs root access for almost all modes of operation
|
# certbot itself needs root access for almost all modes of operation
|
||||||
# The "normal" case is that sudo is used for the steps that need root, but
|
# The "normal" case is that sudo is used for the steps that need root, but
|
||||||
# this script *can* be run as root (not recommended), or fall back to using
|
# this script *can* be run as root (not recommended), or fall back to using
|
||||||
# `su`
|
# `su`. Auto-detection can be overrided by explicitly setting the
|
||||||
SUDO_ENV=""
|
# environment variable LE_AUTO_SUDO to 'sudo', 'sudo_su' or '' as used below.
|
||||||
export CERTBOT_AUTO="$0"
|
|
||||||
if test "`id -u`" -ne "0" ; then
|
# Because the parameters in `su -c` has to be a string,
|
||||||
if command -v sudo 1>/dev/null 2>&1; then
|
# we need to properly escape it.
|
||||||
SUDO=sudo
|
su_sudo() {
|
||||||
SUDO_ENV="CERTBOT_AUTO=$0"
|
|
||||||
else
|
|
||||||
echo \"sudo\" is not available, will use \"su\" for installation steps...
|
|
||||||
# Because the parameters in `su -c` has to be a string,
|
|
||||||
# we need properly escape it
|
|
||||||
su_sudo() {
|
|
||||||
args=""
|
args=""
|
||||||
# This `while` loop iterates over all parameters given to this function.
|
# This `while` loop iterates over all parameters given to this function.
|
||||||
# For each parameter, all `'` will be replace by `'"'"'`, and the escaped string
|
# For each parameter, all `'` will be replace by `'"'"'`, and the escaped string
|
||||||
@@ -111,11 +121,37 @@ if test "`id -u`" -ne "0" ; then
|
|||||||
shift
|
shift
|
||||||
done
|
done
|
||||||
su root -c "$args"
|
su root -c "$args"
|
||||||
}
|
}
|
||||||
|
|
||||||
|
SUDO_ENV=""
|
||||||
|
export CERTBOT_AUTO="$0"
|
||||||
|
if [ -n "${LE_AUTO_SUDO+x}" ]; then
|
||||||
|
case "$LE_AUTO_SUDO" in
|
||||||
|
su_sudo|su)
|
||||||
|
SUDO=su_sudo
|
||||||
|
;;
|
||||||
|
sudo)
|
||||||
|
SUDO=sudo
|
||||||
|
SUDO_ENV="CERTBOT_AUTO=$0"
|
||||||
|
;;
|
||||||
|
'') ;; # Nothing to do for plain root method.
|
||||||
|
*)
|
||||||
|
echo "Error: unknown root authorization mechanism '$LE_AUTO_SUDO'."
|
||||||
|
exit 1
|
||||||
|
esac
|
||||||
|
echo "Using preset root authorization mechanism '$LE_AUTO_SUDO'."
|
||||||
|
else
|
||||||
|
if test "`id -u`" -ne "0" ; then
|
||||||
|
if $EXISTS sudo 1>/dev/null 2>&1; then
|
||||||
|
SUDO=sudo
|
||||||
|
SUDO_ENV="CERTBOT_AUTO=$0"
|
||||||
|
else
|
||||||
|
echo \"sudo\" is not available, will use \"su\" for installation steps...
|
||||||
SUDO=su_sudo
|
SUDO=su_sudo
|
||||||
fi
|
fi
|
||||||
else
|
else
|
||||||
SUDO=
|
SUDO=
|
||||||
|
fi
|
||||||
fi
|
fi
|
||||||
|
|
||||||
ExperimentalBootstrap() {
|
ExperimentalBootstrap() {
|
||||||
@@ -136,7 +172,7 @@ ExperimentalBootstrap() {
|
|||||||
DeterminePythonVersion() {
|
DeterminePythonVersion() {
|
||||||
for LE_PYTHON in "$LE_PYTHON" python2.7 python27 python2 python; do
|
for LE_PYTHON in "$LE_PYTHON" python2.7 python27 python2 python; do
|
||||||
# Break (while keeping the LE_PYTHON value) if found.
|
# Break (while keeping the LE_PYTHON value) if found.
|
||||||
command -v "$LE_PYTHON" > /dev/null && break
|
$EXISTS "$LE_PYTHON" > /dev/null && break
|
||||||
done
|
done
|
||||||
if [ "$?" != "0" ]; then
|
if [ "$?" != "0" ]; then
|
||||||
echo "Cannot find any Pythons; please install one!"
|
echo "Cannot find any Pythons; please install one!"
|
||||||
@@ -177,16 +213,19 @@ BootstrapDebCommon() {
|
|||||||
# distro version (#346)
|
# distro version (#346)
|
||||||
|
|
||||||
virtualenv=
|
virtualenv=
|
||||||
if apt-cache show virtualenv > /dev/null 2>&1 && ! apt-cache --quiet=0 show virtualenv 2>&1 | grep -q 'No packages found'; then
|
# virtual env is known to apt and is installable
|
||||||
|
if apt-cache show virtualenv > /dev/null 2>&1 ; then
|
||||||
|
if ! LC_ALL=C apt-cache --quiet=0 show virtualenv 2>&1 | grep -q 'No packages found'; then
|
||||||
virtualenv="virtualenv"
|
virtualenv="virtualenv"
|
||||||
fi
|
fi
|
||||||
|
fi
|
||||||
|
|
||||||
if apt-cache show python-virtualenv > /dev/null 2>&1; then
|
if apt-cache show python-virtualenv > /dev/null 2>&1; then
|
||||||
virtualenv="$virtualenv python-virtualenv"
|
virtualenv="$virtualenv python-virtualenv"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
augeas_pkg="libaugeas0 augeas-lenses"
|
augeas_pkg="libaugeas0 augeas-lenses"
|
||||||
AUGVERSION=`apt-cache show --no-all-versions libaugeas0 | grep ^Version: | cut -d" " -f2`
|
AUGVERSION=`LC_ALL=C apt-cache show --no-all-versions libaugeas0 | grep ^Version: | cut -d" " -f2`
|
||||||
|
|
||||||
if [ "$ASSUME_YES" = 1 ]; then
|
if [ "$ASSUME_YES" = 1 ]; then
|
||||||
YES_FLAG="-y"
|
YES_FLAG="-y"
|
||||||
@@ -248,15 +287,15 @@ BootstrapDebCommon() {
|
|||||||
python-dev \
|
python-dev \
|
||||||
$virtualenv \
|
$virtualenv \
|
||||||
gcc \
|
gcc \
|
||||||
dialog \
|
|
||||||
$augeas_pkg \
|
$augeas_pkg \
|
||||||
libssl-dev \
|
libssl-dev \
|
||||||
|
openssl \
|
||||||
libffi-dev \
|
libffi-dev \
|
||||||
ca-certificates \
|
ca-certificates \
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
if ! command -v virtualenv > /dev/null ; then
|
if ! $EXISTS virtualenv > /dev/null ; then
|
||||||
echo Failed to install a working \"virtualenv\" command, exiting
|
echo Failed to install a working \"virtualenv\" command, exiting
|
||||||
exit 1
|
exit 1
|
||||||
fi
|
fi
|
||||||
@@ -307,7 +346,6 @@ BootstrapRpmCommon() {
|
|||||||
|
|
||||||
pkgs="
|
pkgs="
|
||||||
gcc
|
gcc
|
||||||
dialog
|
|
||||||
augeas-libs
|
augeas-libs
|
||||||
openssl
|
openssl
|
||||||
openssl-devel
|
openssl-devel
|
||||||
@@ -361,7 +399,6 @@ BootstrapSuseCommon() {
|
|||||||
python-devel \
|
python-devel \
|
||||||
python-virtualenv \
|
python-virtualenv \
|
||||||
gcc \
|
gcc \
|
||||||
dialog \
|
|
||||||
augeas-lenses \
|
augeas-lenses \
|
||||||
libopenssl-devel \
|
libopenssl-devel \
|
||||||
libffi-devel \
|
libffi-devel \
|
||||||
@@ -380,7 +417,6 @@ BootstrapArchCommon() {
|
|||||||
python2
|
python2
|
||||||
python-virtualenv
|
python-virtualenv
|
||||||
gcc
|
gcc
|
||||||
dialog
|
|
||||||
augeas
|
augeas
|
||||||
openssl
|
openssl
|
||||||
libffi
|
libffi
|
||||||
@@ -404,22 +440,26 @@ BootstrapGentooCommon() {
|
|||||||
PACKAGES="
|
PACKAGES="
|
||||||
dev-lang/python:2.7
|
dev-lang/python:2.7
|
||||||
dev-python/virtualenv
|
dev-python/virtualenv
|
||||||
dev-util/dialog
|
|
||||||
app-admin/augeas
|
app-admin/augeas
|
||||||
dev-libs/openssl
|
dev-libs/openssl
|
||||||
dev-libs/libffi
|
dev-libs/libffi
|
||||||
app-misc/ca-certificates
|
app-misc/ca-certificates
|
||||||
virtual/pkgconfig"
|
virtual/pkgconfig"
|
||||||
|
|
||||||
|
ASK_OPTION="--ask"
|
||||||
|
if [ "$ASSUME_YES" = 1 ]; then
|
||||||
|
ASK_OPTION=""
|
||||||
|
fi
|
||||||
|
|
||||||
case "$PACKAGE_MANAGER" in
|
case "$PACKAGE_MANAGER" in
|
||||||
(paludis)
|
(paludis)
|
||||||
$SUDO cave resolve --preserve-world --keep-targets if-possible $PACKAGES -x
|
$SUDO cave resolve --preserve-world --keep-targets if-possible $PACKAGES -x
|
||||||
;;
|
;;
|
||||||
(pkgcore)
|
(pkgcore)
|
||||||
$SUDO pmerge --noreplace --oneshot $PACKAGES
|
$SUDO pmerge --noreplace --oneshot $ASK_OPTION $PACKAGES
|
||||||
;;
|
;;
|
||||||
(portage|*)
|
(portage|*)
|
||||||
$SUDO emerge --noreplace --oneshot $PACKAGES
|
$SUDO emerge --noreplace --oneshot $ASK_OPTION $PACKAGES
|
||||||
;;
|
;;
|
||||||
esac
|
esac
|
||||||
}
|
}
|
||||||
@@ -449,7 +489,6 @@ BootstrapMac() {
|
|||||||
fi
|
fi
|
||||||
|
|
||||||
$pkgcmd augeas
|
$pkgcmd augeas
|
||||||
$pkgcmd dialog
|
|
||||||
if [ "$(which python)" = "/System/Library/Frameworks/Python.framework/Versions/2.7/bin/python" \
|
if [ "$(which python)" = "/System/Library/Frameworks/Python.framework/Versions/2.7/bin/python" \
|
||||||
-o "$(which python)" = "/usr/bin/python" ]; then
|
-o "$(which python)" = "/usr/bin/python" ]; then
|
||||||
# We want to avoid using the system Python because it requires root to use pip.
|
# We want to avoid using the system Python because it requires root to use pip.
|
||||||
@@ -458,7 +497,7 @@ BootstrapMac() {
|
|||||||
$pkgcmd python
|
$pkgcmd python
|
||||||
fi
|
fi
|
||||||
|
|
||||||
# Workaround for _dlopen not finding augeas on OS X
|
# Workaround for _dlopen not finding augeas on macOS
|
||||||
if [ "$pkgman" = "port" ] && ! [ -e "/usr/local/lib/libaugeas.dylib" ] && [ -e "/opt/local/lib/libaugeas.dylib" ]; then
|
if [ "$pkgman" = "port" ] && ! [ -e "/usr/local/lib/libaugeas.dylib" ] && [ -e "/opt/local/lib/libaugeas.dylib" ]; then
|
||||||
echo "Applying augeas workaround"
|
echo "Applying augeas workaround"
|
||||||
$SUDO mkdir -p /usr/local/lib/
|
$SUDO mkdir -p /usr/local/lib/
|
||||||
@@ -496,8 +535,8 @@ BootstrapMageiaCommon() {
|
|||||||
if ! $SUDO urpmi --force \
|
if ! $SUDO urpmi --force \
|
||||||
git \
|
git \
|
||||||
gcc \
|
gcc \
|
||||||
cdialog \
|
|
||||||
python-augeas \
|
python-augeas \
|
||||||
|
openssl \
|
||||||
libopenssl-devel \
|
libopenssl-devel \
|
||||||
libffi-devel \
|
libffi-devel \
|
||||||
rootcerts
|
rootcerts
|
||||||
@@ -541,7 +580,7 @@ Bootstrap() {
|
|||||||
elif uname | grep -iq FreeBSD ; then
|
elif uname | grep -iq FreeBSD ; then
|
||||||
ExperimentalBootstrap "FreeBSD" BootstrapFreeBsd
|
ExperimentalBootstrap "FreeBSD" BootstrapFreeBsd
|
||||||
elif uname | grep -iq Darwin ; then
|
elif uname | grep -iq Darwin ; then
|
||||||
ExperimentalBootstrap "Mac OS X" BootstrapMac
|
ExperimentalBootstrap "macOS" BootstrapMac
|
||||||
elif [ -f /etc/issue ] && grep -iq "Amazon Linux" /etc/issue ; then
|
elif [ -f /etc/issue ] && grep -iq "Amazon Linux" /etc/issue ; then
|
||||||
ExperimentalBootstrap "Amazon Linux" BootstrapRpmCommon
|
ExperimentalBootstrap "Amazon Linux" BootstrapRpmCommon
|
||||||
elif [ -f /etc/product ] && grep -q "Joyent Instance" /etc/product ; then
|
elif [ -f /etc/product ] && grep -q "Joyent Instance" /etc/product ; then
|
||||||
@@ -557,7 +596,7 @@ Bootstrap() {
|
|||||||
}
|
}
|
||||||
|
|
||||||
TempDir() {
|
TempDir() {
|
||||||
mktemp -d 2>/dev/null || mktemp -d -t 'le' # Linux || OS X
|
mktemp -d 2>/dev/null || mktemp -d -t 'le' # Linux || macOS
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
@@ -594,6 +633,11 @@ if [ "$1" = "--le-auto-phase2" ]; then
|
|||||||
# `pip install --no-cache-dir -e acme -e . -e certbot-apache -e certbot-nginx`,
|
# `pip install --no-cache-dir -e acme -e . -e certbot-apache -e certbot-nginx`,
|
||||||
# and then use `hashin` or a more secure method to gather the hashes.
|
# and then use `hashin` or a more secure method to gather the hashes.
|
||||||
|
|
||||||
|
# Hashin example:
|
||||||
|
# pip install hashin
|
||||||
|
# hashin -r letsencrypt-auto-requirements.txt cryptography==1.5.2
|
||||||
|
# sets the new certbot-auto pinned version of cryptography to 1.5.2
|
||||||
|
|
||||||
argparse==1.4.0 \
|
argparse==1.4.0 \
|
||||||
--hash=sha256:c31647edb69fd3d465a847ea3157d37bed1f95f19760b11a47aa91c04b666314 \
|
--hash=sha256:c31647edb69fd3d465a847ea3157d37bed1f95f19760b11a47aa91c04b666314 \
|
||||||
--hash=sha256:62b089a55be1d8949cd2bc7e0df0bddb9e028faefc8c32038cc84862aefdd6e4
|
--hash=sha256:62b089a55be1d8949cd2bc7e0df0bddb9e028faefc8c32038cc84862aefdd6e4
|
||||||
@@ -601,7 +645,8 @@ argparse==1.4.0 \
|
|||||||
# This comes before cffi because cffi will otherwise install an unchecked
|
# This comes before cffi because cffi will otherwise install an unchecked
|
||||||
# version via setup_requires.
|
# version via setup_requires.
|
||||||
pycparser==2.14 \
|
pycparser==2.14 \
|
||||||
--hash=sha256:7959b4a74abdc27b312fed1c21e6caf9309ce0b29ea86b591fd2e99ecdf27f73
|
--hash=sha256:7959b4a74abdc27b312fed1c21e6caf9309ce0b29ea86b591fd2e99ecdf27f73 \
|
||||||
|
--no-binary pycparser
|
||||||
|
|
||||||
cffi==1.4.2 \
|
cffi==1.4.2 \
|
||||||
--hash=sha256:53c1c9ddb30431513eb7f3cdef0a3e06b0f1252188aaa7744af0f5a4cd45dbaf \
|
--hash=sha256:53c1c9ddb30431513eb7f3cdef0a3e06b0f1252188aaa7744af0f5a4cd45dbaf \
|
||||||
@@ -624,29 +669,29 @@ ConfigArgParse==0.10.0 \
|
|||||||
--hash=sha256:3b50a83dd58149dfcee98cb6565265d10b53e9c0a2bca7eeef7fb5f5524890a7
|
--hash=sha256:3b50a83dd58149dfcee98cb6565265d10b53e9c0a2bca7eeef7fb5f5524890a7
|
||||||
configobj==5.0.6 \
|
configobj==5.0.6 \
|
||||||
--hash=sha256:a2f5650770e1c87fb335af19a9b7eb73fc05ccf22144eb68db7d00cd2bcb0902
|
--hash=sha256:a2f5650770e1c87fb335af19a9b7eb73fc05ccf22144eb68db7d00cd2bcb0902
|
||||||
cryptography==1.3.4 \
|
cryptography==1.5.3 \
|
||||||
--hash=sha256:bede00edd11a2a62c8c98c271cc103fa3a3d72acf64f6e5e4eaf251128897b17 \
|
--hash=sha256:e514d92086246b53ae9b048df652cf3036b462e50a6ce9fac6b6253502679991 \
|
||||||
--hash=sha256:53b39e687b744bb548a98f40736cc529d9f60959b4e6cc551322cf9505d35eb3 \
|
--hash=sha256:10ee414f4b5af403a0d8f20dfa80f7dad1fc7ae5452ec5af03712d5b6e78c664 \
|
||||||
--hash=sha256:474b73ad1139b4e423e46bbd818efd0d5c0df1c65d9f7c957d64c9215d77afde \
|
--hash=sha256:7234456d1f4345a144ed07af2416c7c0659d4bb599dd1a963103dc8c183b370e \
|
||||||
--hash=sha256:aaddf9592d5b99e32dd518bb4a25b147c124f9d6b4ad64b94f01b15d1666b8c8 \
|
--hash=sha256:d3b9587406f94642bd70b3d666b813f446e95f84220c9e416ad94cbfb6be2eaa \
|
||||||
--hash=sha256:6dcad2f407db8c3cd6ecd78361439c449a4f94786b46c54507e7e68f51e1709d \
|
--hash=sha256:b15fc6b59f1474eef62207c85888afada8acc47fae8198ba2b0197d54538961a \
|
||||||
--hash=sha256:475c153fc622e656f1f10a9c9941d0ac7ab18df7c38d35d563a437c1c0e34f24 \
|
--hash=sha256:3b62d65d342704fc07ed171598db2a2775bdf587b1b6abd2cba2261bfe3ccde3 \
|
||||||
--hash=sha256:86dd61df581cba04e89e45081efbc531faff1c9d99c77b1ce97f87216c356353 \
|
--hash=sha256:059343022ec904c867a13bc55d2573e36c8cfb2c250e30d8a2e9825f253b07ba \
|
||||||
--hash=sha256:75cc697e4ef5fdd0102ca749114c6370dbd11db0c9132a18834858c2566247e3 \
|
--hash=sha256:c7897cf13bc8b4ee0215d83cbd51766d87c06b277fcca1f9108595508e5bcfb4 \
|
||||||
--hash=sha256:ea03ad5b9df6d79fc9fc1ab23729e01e1c920d2974c5e3c634ccf45a5c378452 \
|
--hash=sha256:9b69e983e5bf83039ddd52e52a28c7faedb2b22bdfb5876377b95aac7d3be63e \
|
||||||
--hash=sha256:c8872b8fe4f3416d6338ab99612f49ab314f7856cb43bffab2a32d28a6267be8 \
|
--hash=sha256:61e40905c426d02b3fae38088dc66ce4ef84830f7eb223dec6b3ac3ccdc676fb \
|
||||||
--hash=sha256:468fc6e16eaec6ceaa6bc341273e6e9912d01b42b740f8cf896ace7fcd6a321d \
|
--hash=sha256:00783a32bcd91a12177230d35bfcf70a2333ade4a6b607fac94a633a7971c671 \
|
||||||
--hash=sha256:d6fea3c6502735011c5d61a62aef1c1d770fc6a2def45d9e6c0d94c9651e3317 \
|
--hash=sha256:d11973f49b648cde1ea1a30e496d7557dbfeccd08b3cd9ba58d286a9c274ff8e \
|
||||||
--hash=sha256:3cf95f179f4bead3d5649b91860ef4cf60ad4244209190fc405908272576d961 \
|
--hash=sha256:f24bedf28b81932ba6063aec9a826669f5237ea3b755efe04d98b072faa053a5 \
|
||||||
--hash=sha256:141f77e60a5b9158309b2b60288c7f81d37faa15c22a69b94c190ceefaaa6236 \
|
--hash=sha256:3ab5725367239e3deb9b92e917aa965af3fef008f25b96a3000821869e208181 \
|
||||||
--hash=sha256:87b7a1fe703c6424451f3372d1879dae91c7fe5e13375441a72833db76fee30e \
|
--hash=sha256:8a53209de822e22b5f73bf4b99e68ac4ccc91051fd6751c8252982983e86a77d \
|
||||||
--hash=sha256:f5ee3cb0cf1a6550bf483ccffa6608db267a377b45f7e3a8201a86d1d8feb19f \
|
--hash=sha256:5a07439d4b1e4197ac202b7eea45e26a6fd65757652dc50f1a63367f711df933 \
|
||||||
--hash=sha256:4e097286651ea318300af3251375d48b71b8228481c56cd617ddd4459a1ff261 \
|
--hash=sha256:26b1c4b40aec7b0074bceabe6e06565aa28176eca7323a31df66ebf89fe916d3 \
|
||||||
--hash=sha256:1e3d3ae3f22f22d50d340f47f25227511326f3f1396c6d2446a5b45b516c4313 \
|
--hash=sha256:eaa4a7b5a6682adcf8d6ebb2a08a008802657643655bb527c95c8a3860253d8e \
|
||||||
--hash=sha256:6a057941cb64d79834ea3cf99093fcc4787c2a5d44f686c4f297361ddc419bcd \
|
--hash=sha256:8156927dcf8da274ff205ad0612f75c380df45385bacf98531a5b3348c88d135 \
|
||||||
--hash=sha256:68b3d5390b92559ddd3353c73ab2dfcff758f9c4ec4f5d5226ccede0e5d779f4 \
|
--hash=sha256:61ec0d792749d0e91e84b1d58b6dfd204806b10b5811f846c2ceca0de028c53a \
|
||||||
--hash=sha256:545dc003b4b6081f9c3e452da15d819b04b696f49484aff64c0a2aedf766bef8 \
|
--hash=sha256:26330c88041569ca621cc42274d0ea2667a48b6deab41467272c3aba0b6e8f07 \
|
||||||
--hash=sha256:423ff890c01be7c70dbfeaa967eeef5146f1a43a5f810ffdc07b178e48a105a9
|
--hash=sha256:cf82ddac919b587f5e44247579b433224cc2e03332d2ea4d89aa70d7e6b64ae5
|
||||||
enum34==1.1.2 \
|
enum34==1.1.2 \
|
||||||
--hash=sha256:2475d7fcddf5951e92ff546972758802de5260bf409319a9f1934e6bbc8b1dc7 \
|
--hash=sha256:2475d7fcddf5951e92ff546972758802de5260bf409319a9f1934e6bbc8b1dc7 \
|
||||||
--hash=sha256:35907defb0f992b75ab7788f65fedc1cf20ffa22688e0e6f6f12afc06b3ea501
|
--hash=sha256:35907defb0f992b75ab7788f65fedc1cf20ffa22688e0e6f6f12afc06b3ea501
|
||||||
@@ -662,8 +707,6 @@ ipaddress==1.0.16 \
|
|||||||
linecache2==1.0.0 \
|
linecache2==1.0.0 \
|
||||||
--hash=sha256:e78be9c0a0dfcbac712fe04fbf92b96cddae80b1b842f24248214c8496f006ef \
|
--hash=sha256:e78be9c0a0dfcbac712fe04fbf92b96cddae80b1b842f24248214c8496f006ef \
|
||||||
--hash=sha256:4b26ff4e7110db76eeb6f5a7b64a82623839d595c2038eeda662f2a2db78e97c
|
--hash=sha256:4b26ff4e7110db76eeb6f5a7b64a82623839d595c2038eeda662f2a2db78e97c
|
||||||
ndg-httpsclient==0.4.0 \
|
|
||||||
--hash=sha256:e8c155fdebd9c4bcb0810b4ed01ae1987554b1ee034dd7532d7b8fdae38a6274
|
|
||||||
ordereddict==1.1 \
|
ordereddict==1.1 \
|
||||||
--hash=sha256:1c35b4ac206cef2d24816c89f89cf289dd3d38cf7c449bb3fab7bf6d43f01b1f
|
--hash=sha256:1c35b4ac206cef2d24816c89f89cf289dd3d38cf7c449bb3fab7bf6d43f01b1f
|
||||||
parsedatetime==2.1 \
|
parsedatetime==2.1 \
|
||||||
@@ -684,9 +727,9 @@ pyasn1==0.1.9 \
|
|||||||
--hash=sha256:5191ff6b9126d2c039dd87f8ff025bed274baf07fa78afa46f556b1ad7265d6e \
|
--hash=sha256:5191ff6b9126d2c039dd87f8ff025bed274baf07fa78afa46f556b1ad7265d6e \
|
||||||
--hash=sha256:8323e03637b2d072cc7041300bac6ec448c3c28950ab40376036788e9a1af629 \
|
--hash=sha256:8323e03637b2d072cc7041300bac6ec448c3c28950ab40376036788e9a1af629 \
|
||||||
--hash=sha256:853cacd96d1f701ddd67aa03ecc05f51890135b7262e922710112f12a2ed2a7f
|
--hash=sha256:853cacd96d1f701ddd67aa03ecc05f51890135b7262e922710112f12a2ed2a7f
|
||||||
pyopenssl==16.0.0 \
|
pyOpenSSL==16.2.0 \
|
||||||
--hash=sha256:5add70cf00273bf957ca31fdb0df9b0ae4639e081897d5f86a0ae1f104901230 \
|
--hash=sha256:26ca380ddf272f7556e48064bbcd5bd71f83dfc144f3583501c7ddbd9434ee17 \
|
||||||
--hash=sha256:363d10ee43d062285facf4e465f4f5163f9f702f9134f0a5896f134cbb92d17d
|
--hash=sha256:7779a3bbb74e79db234af6a08775568c6769b5821faecf6e2f4143edb227516e
|
||||||
pyparsing==2.1.8 \
|
pyparsing==2.1.8 \
|
||||||
--hash=sha256:2f0f5ceb14eccd5aef809d6382e87df22ca1da583c79f6db01675ce7d7f49c18 \
|
--hash=sha256:2f0f5ceb14eccd5aef809d6382e87df22ca1da583c79f6db01675ce7d7f49c18 \
|
||||||
--hash=sha256:03a4869b9f3493807ee1f1cb405e6d576a1a2ca4d81a982677c0c1ad6177c56b \
|
--hash=sha256:03a4869b9f3493807ee1f1cb405e6d576a1a2ca4d81a982677c0c1ad6177c56b \
|
||||||
@@ -701,9 +744,6 @@ pyRFC3339==1.0 \
|
|||||||
--hash=sha256:8dfbc6c458b8daba1c0f3620a8c78008b323a268b27b7359e92a4ae41325f535
|
--hash=sha256:8dfbc6c458b8daba1c0f3620a8c78008b323a268b27b7359e92a4ae41325f535
|
||||||
python-augeas==0.5.0 \
|
python-augeas==0.5.0 \
|
||||||
--hash=sha256:67d59d66cdba8d624e0389b87b2a83a176f21f16a87553b50f5703b23f29bac2
|
--hash=sha256:67d59d66cdba8d624e0389b87b2a83a176f21f16a87553b50f5703b23f29bac2
|
||||||
python2-pythondialog==3.3.0 \
|
|
||||||
--hash=sha256:04e93f24995c43dd90f338d5d865ca72ce3fb5a5358d4daa4965571db35fc3ec \
|
|
||||||
--hash=sha256:3e6f593fead98f8a526bc3e306933533236e33729f552f52896ea504f55313fa
|
|
||||||
pytz==2015.7 \
|
pytz==2015.7 \
|
||||||
--hash=sha256:3abe6a6d3fc2fbbe4c60144211f45da2edbe3182a6f6511af6bbba0598b1f992 \
|
--hash=sha256:3abe6a6d3fc2fbbe4c60144211f45da2edbe3182a6f6511af6bbba0598b1f992 \
|
||||||
--hash=sha256:939ef9c1e1224d980405689a97ffcf7828c56d1517b31d73464356c1f2b7769e \
|
--hash=sha256:939ef9c1e1224d980405689a97ffcf7828c56d1517b31d73464356c1f2b7769e \
|
||||||
@@ -718,9 +758,9 @@ pytz==2015.7 \
|
|||||||
--hash=sha256:fbd26746772c24cb93c8b97cbdad5cb9e46c86bbdb1b9d8a743ee00e2fb1fc5d \
|
--hash=sha256:fbd26746772c24cb93c8b97cbdad5cb9e46c86bbdb1b9d8a743ee00e2fb1fc5d \
|
||||||
--hash=sha256:99266ef30a37e43932deec2b7ca73e83c8dbc3b9ff703ec73eca6b1dae6befea \
|
--hash=sha256:99266ef30a37e43932deec2b7ca73e83c8dbc3b9ff703ec73eca6b1dae6befea \
|
||||||
--hash=sha256:8b6ce1c993909783bc96e0b4f34ea223bff7a4df2c90bdb9c4e0f1ac928689e3
|
--hash=sha256:8b6ce1c993909783bc96e0b4f34ea223bff7a4df2c90bdb9c4e0f1ac928689e3
|
||||||
requests==2.9.1 \
|
requests==2.12.1 \
|
||||||
--hash=sha256:113fbba5531a9e34945b7d36b33a084e8ba5d0664b703c81a7c572d91919a5b8 \
|
--hash=sha256:3f3f27a9d0f9092935efc78054ef324eb9f8166718270aefe036dfa1e4f68e1e \
|
||||||
--hash=sha256:c577815dd00f1394203fc44eb979724b098f88264a9ef898ee45b8e5e9cf587f
|
--hash=sha256:2109ecea94df90980be040490ff1d879971b024861539abb00054062388b612e
|
||||||
six==1.10.0 \
|
six==1.10.0 \
|
||||||
--hash=sha256:0ff78c403d9bccf5a425a6d31a12aa6b47f1c21ca4dc2573a7e2f32a97335eb1 \
|
--hash=sha256:0ff78c403d9bccf5a425a6d31a12aa6b47f1c21ca4dc2573a7e2f32a97335eb1 \
|
||||||
--hash=sha256:105f8d68616f8248e24bf0e9372ef04d3cc10104f1980f54d57b2ce73a5ad56a
|
--hash=sha256:105f8d68616f8248e24bf0e9372ef04d3cc10104f1980f54d57b2ce73a5ad56a
|
||||||
@@ -761,18 +801,18 @@ letsencrypt==0.7.0 \
|
|||||||
|
|
||||||
# THE LINES BELOW ARE EDITED BY THE RELEASE SCRIPT; ADD ALL DEPENDENCIES ABOVE.
|
# THE LINES BELOW ARE EDITED BY THE RELEASE SCRIPT; ADD ALL DEPENDENCIES ABOVE.
|
||||||
|
|
||||||
acme==0.9.3 \
|
acme==0.10.0 \
|
||||||
--hash=sha256:d18ce17a75ad24d27981dfaef0524aa905eab757b267e027162b56a8967ab8fb \
|
--hash=sha256:df4299a9881d94185a1578ed97334430a90f761ce815edd300860ca47d0538f1 \
|
||||||
--hash=sha256:a6eff1f955eb2e4316abd9aa2fedb6d9345e6b5b8a2d64ea0ad35e05d6124099
|
--hash=sha256:ddebdf1fe139c8fedbcf633955ec867496d2f7d2d2e9879d538437a69ab47876
|
||||||
certbot==0.9.3 \
|
certbot==0.10.0 \
|
||||||
--hash=sha256:a87ef4c53c018df4e52ee2f2e906ad16bbb37789f29e6f284c495a2eb4d9b243 \
|
--hash=sha256:fb1bfa3d54ce9366758e374f7ed99667ce20484224934d3e8e57839fcf784bc5 \
|
||||||
--hash=sha256:68149cb8392b29f5d5246e7226d25f913f2b10482bf3bc7368e8c8821d25f3b0
|
--hash=sha256:dd64ed8fb3cc3b053f05e779b934433445918668c49bcdbb2c816062815e1661
|
||||||
certbot-apache==0.9.3 \
|
certbot-apache==0.10.0 \
|
||||||
--hash=sha256:f379b1053e10709692654d7a6fcea9eaed19b66c49a753b61e31bd06a04b0aac \
|
--hash=sha256:909d59c53507093f838f7336f75d7d78563a35b16afdf6c30f45c9f47bf069da \
|
||||||
--hash=sha256:a5d98cf972072de08f984db4e6a7f20269f3f023c43f6d4e781fe43be7c10086
|
--hash=sha256:6f110dae227dd0fea9572fa12dd60b041e391f5d2028cc2e1fedd2a9a0d2bc88
|
||||||
certbot-nginx==0.9.3 \
|
certbot-nginx==0.10.0 \
|
||||||
--hash=sha256:3c26f18f0b57550f069263bd9b2984ef33eab6693e7796611c1b2cc16574069c \
|
--hash=sha256:4f33a230d420cbd0431e7b707fb9a1732bfd18d3c6056019591bd7c3a13abe92 \
|
||||||
--hash=sha256:7337a2e90e0b28a1ab09e31d9fb81c6d78e6453500c824c0f18bab5d31b63058
|
--hash=sha256:c12ffd05207b0be3c765b3d3e2927e0b2cc2b7de20654b19d154a0d789e7c1d5
|
||||||
|
|
||||||
UNLIKELY_EOF
|
UNLIKELY_EOF
|
||||||
# -------------------------------------------------------------------------
|
# -------------------------------------------------------------------------
|
||||||
@@ -940,7 +980,28 @@ UNLIKELY_EOF
|
|||||||
# Report error. (Otherwise, be quiet.)
|
# Report error. (Otherwise, be quiet.)
|
||||||
echo "Had a problem while installing Python packages."
|
echo "Had a problem while installing Python packages."
|
||||||
if [ "$VERBOSE" != 1 ]; then
|
if [ "$VERBOSE" != 1 ]; then
|
||||||
|
echo
|
||||||
|
echo "pip prints the following errors: "
|
||||||
|
echo "====================================================="
|
||||||
echo "$PIP_OUT"
|
echo "$PIP_OUT"
|
||||||
|
echo "====================================================="
|
||||||
|
echo
|
||||||
|
echo "Certbot has problem setting up the virtual environment."
|
||||||
|
|
||||||
|
if `echo $PIP_OUT | grep -q Killed` || `echo $PIP_OUT | grep -q "allocate memory"` ; then
|
||||||
|
echo
|
||||||
|
echo "Based on your pip output, the problem can likely be fixed by "
|
||||||
|
echo "increasing the available memory."
|
||||||
|
else
|
||||||
|
echo
|
||||||
|
echo "We were not be able to guess the right solution from your pip "
|
||||||
|
echo "output."
|
||||||
|
fi
|
||||||
|
|
||||||
|
echo
|
||||||
|
echo "Consult https://certbot.eff.org/docs/install.html#problems-with-python-virtual-environment"
|
||||||
|
echo "for possible solutions."
|
||||||
|
echo "You may also find some support resources at https://certbot.eff.org/support/ ."
|
||||||
fi
|
fi
|
||||||
rm -rf "$VENV_PATH"
|
rm -rf "$VENV_PATH"
|
||||||
exit 1
|
exit 1
|
||||||
@@ -1132,7 +1193,7 @@ UNLIKELY_EOF
|
|||||||
# TODO: Deal with quotes in pathnames.
|
# TODO: Deal with quotes in pathnames.
|
||||||
echo "Replacing certbot-auto..."
|
echo "Replacing certbot-auto..."
|
||||||
# Clone permissions with cp. chmod and chown don't have a --reference
|
# Clone permissions with cp. chmod and chown don't have a --reference
|
||||||
# option on OS X or BSD, and stat -c on Linux is stat -f on OS X and BSD:
|
# option on macOS or BSD, and stat -c on Linux is stat -f on macOS and BSD:
|
||||||
$SUDO cp -p "$0" "$TEMP_DIR/letsencrypt-auto.permission-clone"
|
$SUDO cp -p "$0" "$TEMP_DIR/letsencrypt-auto.permission-clone"
|
||||||
$SUDO cp "$TEMP_DIR/letsencrypt-auto" "$TEMP_DIR/letsencrypt-auto.permission-clone"
|
$SUDO cp "$TEMP_DIR/letsencrypt-auto" "$TEMP_DIR/letsencrypt-auto.permission-clone"
|
||||||
# Using mv rather than cp leaves the old file descriptor pointing to the
|
# Using mv rather than cp leaves the old file descriptor pointing to the
|
||||||
|
|||||||
@@ -1,11 +1,11 @@
|
|||||||
-----BEGIN PGP SIGNATURE-----
|
-----BEGIN PGP SIGNATURE-----
|
||||||
Version: GnuPG v1
|
Version: GnuPG v1
|
||||||
|
|
||||||
iQEcBAABAgAGBQJYADL6AAoJEE0XyZXNl3XyZW8H/RgPxga4SZ8VoMGGOpzYGzaD
|
iQEcBAABAgAGBQJYdmhCAAoJEE0XyZXNl3XyuSMH/i6+2GqLh00I+VQRUUHmY/CE
|
||||||
C/VW6IZeHjD7urkAjfSiMMStkYKlZMGcT/3Pw1L39wIX/37jqQTTh01JL+TcqRMJ
|
PeUmrkN2N6DEFZK6Y6r7vR1QoY8xYEbmMZNmCYU+YRiO/TO3mLLycd48vbQoyttL
|
||||||
AUHmSgrErjUU42YV68u2c/wT9Dsid+OxpP/WSbJn5MomWtvGpFxffc/FK/W8ccFR
|
Bi4JalkfkLgfNZNLYvlrDE5K7LaHIiPxQfHN2RIZS4ez6eMREyQXhTPq5HGqQuQH
|
||||||
r6ZhAt2rgkBmYjrC6w8V9KTzhp4+n7ZpQPxuMFxpJhyTmMzgj9K+aI2OuKDKT7iO
|
KkiC9CCKrLvmZXOZA+8ayvoo3U3SI1bZNu7d7c4pEDtkGRMZhNSs8Eejo+knDlny
|
||||||
nke74Lgx/xPatLDgygw5bRiFyZ+X65p/awalEXBcFW0zmlN2Fqp8om8UjtUtkVw9
|
KmEVrvakkcYTeGwz+SckY9Z7rQGyYoFr2+N3owMT40/g9ZnzkaTS/y+G2z1EnWkN
|
||||||
ixr9/kq9VhcHjho9cmKWl14IShbcxZZc60xL2y6gmkgoBpzVlHfvRNnxapodTsc=
|
lapwugl9Pnl6Hog+SBH+osONdg04tIiNayPq11NgWNmMvbG6Lbi4p+RVg+16E1M=
|
||||||
=jULW
|
=BXeZ
|
||||||
-----END PGP SIGNATURE-----
|
-----END PGP SIGNATURE-----
|
||||||
|
|||||||
@@ -23,7 +23,7 @@ if [ -z "$VENV_PATH" ]; then
|
|||||||
VENV_PATH="$XDG_DATA_HOME/$VENV_NAME"
|
VENV_PATH="$XDG_DATA_HOME/$VENV_NAME"
|
||||||
fi
|
fi
|
||||||
VENV_BIN="$VENV_PATH/bin"
|
VENV_BIN="$VENV_PATH/bin"
|
||||||
LE_AUTO_VERSION="0.10.0.dev0"
|
LE_AUTO_VERSION="0.10.0"
|
||||||
BASENAME=$(basename $0)
|
BASENAME=$(basename $0)
|
||||||
USAGE="Usage: $BASENAME [OPTIONS]
|
USAGE="Usage: $BASENAME [OPTIONS]
|
||||||
A self-updating wrapper script for the Certbot ACME client. When run, updates
|
A self-updating wrapper script for the Certbot ACME client. When run, updates
|
||||||
@@ -801,18 +801,18 @@ letsencrypt==0.7.0 \
|
|||||||
|
|
||||||
# THE LINES BELOW ARE EDITED BY THE RELEASE SCRIPT; ADD ALL DEPENDENCIES ABOVE.
|
# THE LINES BELOW ARE EDITED BY THE RELEASE SCRIPT; ADD ALL DEPENDENCIES ABOVE.
|
||||||
|
|
||||||
acme==0.9.3 \
|
acme==0.10.0 \
|
||||||
--hash=sha256:d18ce17a75ad24d27981dfaef0524aa905eab757b267e027162b56a8967ab8fb \
|
--hash=sha256:df4299a9881d94185a1578ed97334430a90f761ce815edd300860ca47d0538f1 \
|
||||||
--hash=sha256:a6eff1f955eb2e4316abd9aa2fedb6d9345e6b5b8a2d64ea0ad35e05d6124099
|
--hash=sha256:ddebdf1fe139c8fedbcf633955ec867496d2f7d2d2e9879d538437a69ab47876
|
||||||
certbot==0.9.3 \
|
certbot==0.10.0 \
|
||||||
--hash=sha256:a87ef4c53c018df4e52ee2f2e906ad16bbb37789f29e6f284c495a2eb4d9b243 \
|
--hash=sha256:fb1bfa3d54ce9366758e374f7ed99667ce20484224934d3e8e57839fcf784bc5 \
|
||||||
--hash=sha256:68149cb8392b29f5d5246e7226d25f913f2b10482bf3bc7368e8c8821d25f3b0
|
--hash=sha256:dd64ed8fb3cc3b053f05e779b934433445918668c49bcdbb2c816062815e1661
|
||||||
certbot-apache==0.9.3 \
|
certbot-apache==0.10.0 \
|
||||||
--hash=sha256:f379b1053e10709692654d7a6fcea9eaed19b66c49a753b61e31bd06a04b0aac \
|
--hash=sha256:909d59c53507093f838f7336f75d7d78563a35b16afdf6c30f45c9f47bf069da \
|
||||||
--hash=sha256:a5d98cf972072de08f984db4e6a7f20269f3f023c43f6d4e781fe43be7c10086
|
--hash=sha256:6f110dae227dd0fea9572fa12dd60b041e391f5d2028cc2e1fedd2a9a0d2bc88
|
||||||
certbot-nginx==0.9.3 \
|
certbot-nginx==0.10.0 \
|
||||||
--hash=sha256:3c26f18f0b57550f069263bd9b2984ef33eab6693e7796611c1b2cc16574069c \
|
--hash=sha256:4f33a230d420cbd0431e7b707fb9a1732bfd18d3c6056019591bd7c3a13abe92 \
|
||||||
--hash=sha256:7337a2e90e0b28a1ab09e31d9fb81c6d78e6453500c824c0f18bab5d31b63058
|
--hash=sha256:c12ffd05207b0be3c765b3d3e2927e0b2cc2b7de20654b19d154a0d789e7c1d5
|
||||||
|
|
||||||
UNLIKELY_EOF
|
UNLIKELY_EOF
|
||||||
# -------------------------------------------------------------------------
|
# -------------------------------------------------------------------------
|
||||||
|
|||||||
Binary file not shown.
@@ -171,15 +171,15 @@ letsencrypt==0.7.0 \
|
|||||||
|
|
||||||
# THE LINES BELOW ARE EDITED BY THE RELEASE SCRIPT; ADD ALL DEPENDENCIES ABOVE.
|
# THE LINES BELOW ARE EDITED BY THE RELEASE SCRIPT; ADD ALL DEPENDENCIES ABOVE.
|
||||||
|
|
||||||
acme==0.9.3 \
|
acme==0.10.0 \
|
||||||
--hash=sha256:d18ce17a75ad24d27981dfaef0524aa905eab757b267e027162b56a8967ab8fb \
|
--hash=sha256:df4299a9881d94185a1578ed97334430a90f761ce815edd300860ca47d0538f1 \
|
||||||
--hash=sha256:a6eff1f955eb2e4316abd9aa2fedb6d9345e6b5b8a2d64ea0ad35e05d6124099
|
--hash=sha256:ddebdf1fe139c8fedbcf633955ec867496d2f7d2d2e9879d538437a69ab47876
|
||||||
certbot==0.9.3 \
|
certbot==0.10.0 \
|
||||||
--hash=sha256:a87ef4c53c018df4e52ee2f2e906ad16bbb37789f29e6f284c495a2eb4d9b243 \
|
--hash=sha256:fb1bfa3d54ce9366758e374f7ed99667ce20484224934d3e8e57839fcf784bc5 \
|
||||||
--hash=sha256:68149cb8392b29f5d5246e7226d25f913f2b10482bf3bc7368e8c8821d25f3b0
|
--hash=sha256:dd64ed8fb3cc3b053f05e779b934433445918668c49bcdbb2c816062815e1661
|
||||||
certbot-apache==0.9.3 \
|
certbot-apache==0.10.0 \
|
||||||
--hash=sha256:f379b1053e10709692654d7a6fcea9eaed19b66c49a753b61e31bd06a04b0aac \
|
--hash=sha256:909d59c53507093f838f7336f75d7d78563a35b16afdf6c30f45c9f47bf069da \
|
||||||
--hash=sha256:a5d98cf972072de08f984db4e6a7f20269f3f023c43f6d4e781fe43be7c10086
|
--hash=sha256:6f110dae227dd0fea9572fa12dd60b041e391f5d2028cc2e1fedd2a9a0d2bc88
|
||||||
certbot-nginx==0.9.3 \
|
certbot-nginx==0.10.0 \
|
||||||
--hash=sha256:3c26f18f0b57550f069263bd9b2984ef33eab6693e7796611c1b2cc16574069c \
|
--hash=sha256:4f33a230d420cbd0431e7b707fb9a1732bfd18d3c6056019591bd7c3a13abe92 \
|
||||||
--hash=sha256:7337a2e90e0b28a1ab09e31d9fb81c6d78e6453500c824c0f18bab5d31b63058
|
--hash=sha256:c12ffd05207b0be3c765b3d3e2927e0b2cc2b7de20654b19d154a0d789e7c1d5
|
||||||
|
|||||||
Reference in New Issue
Block a user